Warning: Permanently added '[localhost]:39334' (ECDSA) to the list of known hosts. 2024/12/18 16:10:40 fuzzer started 2024/12/18 16:10:40 dialing manager at localhost:44037 syzkaller login: [ 68.632897] cgroup: Unknown subsys name 'net' [ 68.733305] cgroup: Unknown subsys name 'cpuset' [ 68.766935] cgroup: Unknown subsys name 'rlimit' 2024/12/18 16:10:59 syscalls: 2217 2024/12/18 16:10:59 code coverage: enabled 2024/12/18 16:10:59 comparison tracing: enabled 2024/12/18 16:10:59 extra coverage: enabled 2024/12/18 16:10:59 setuid sandbox: enabled 2024/12/18 16:10:59 namespace sandbox: enabled 2024/12/18 16:10:59 Android sandbox: enabled 2024/12/18 16:10:59 fault injection: enabled 2024/12/18 16:10:59 leak checking: enabled 2024/12/18 16:10:59 net packet injection: enabled 2024/12/18 16:10:59 net device setup: enabled 2024/12/18 16:10:59 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/12/18 16:10:59 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/12/18 16:10:59 USB emulation: enabled 2024/12/18 16:10:59 hci packet injection: enabled 2024/12/18 16:10:59 wifi device emulation: enabled 2024/12/18 16:10:59 802.15.4 emulation: enabled 2024/12/18 16:10:59 fetching corpus: 0, signal 0/2000 (executing program) 2024/12/18 16:10:59 fetching corpus: 47, signal 25018/28367 (executing program) 2024/12/18 16:10:59 fetching corpus: 97, signal 34007/38651 (executing program) 2024/12/18 16:10:59 fetching corpus: 147, signal 39224/45172 (executing program) 2024/12/18 16:11:00 fetching corpus: 197, signal 50932/57588 (executing program) 2024/12/18 16:11:00 fetching corpus: 247, signal 56601/64086 (executing program) 2024/12/18 16:11:00 fetching corpus: 297, signal 60239/68643 (executing program) 2024/12/18 16:11:00 fetching corpus: 347, signal 64699/73797 (executing program) 2024/12/18 16:11:00 fetching corpus: 397, signal 67411/77315 (executing program) 2024/12/18 16:11:00 fetching corpus: 447, signal 70806/81349 (executing program) 2024/12/18 16:11:00 fetching corpus: 497, signal 73418/84618 (executing program) 2024/12/18 16:11:01 fetching corpus: 547, signal 76434/88152 (executing program) 2024/12/18 16:11:01 fetching corpus: 597, signal 79414/91597 (executing program) 2024/12/18 16:11:01 fetching corpus: 647, signal 82268/94872 (executing program) 2024/12/18 16:11:01 fetching corpus: 697, signal 85883/98685 (executing program) 2024/12/18 16:11:01 fetching corpus: 747, signal 87647/100936 (executing program) 2024/12/18 16:11:01 fetching corpus: 797, signal 89537/103174 (executing program) 2024/12/18 16:11:02 fetching corpus: 847, signal 93111/106709 (executing program) 2024/12/18 16:11:02 fetching corpus: 897, signal 94596/108556 (executing program) 2024/12/18 16:11:02 fetching corpus: 947, signal 96294/110510 (executing program) 2024/12/18 16:11:02 fetching corpus: 997, signal 97263/111877 (executing program) 2024/12/18 16:11:02 fetching corpus: 1047, signal 98913/113739 (executing program) 2024/12/18 16:11:02 fetching corpus: 1097, signal 100746/115720 (executing program) 2024/12/18 16:11:02 fetching corpus: 1147, signal 101991/117226 (executing program) 2024/12/18 16:11:02 fetching corpus: 1197, signal 103708/119008 (executing program) 2024/12/18 16:11:03 fetching corpus: 1247, signal 105266/120622 (executing program) 2024/12/18 16:11:03 fetching corpus: 1297, signal 106645/122106 (executing program) 2024/12/18 16:11:03 fetching corpus: 1347, signal 108159/123621 (executing program) 2024/12/18 16:11:03 fetching corpus: 1397, signal 109021/124722 (executing program) 2024/12/18 16:11:03 fetching corpus: 1447, signal 110308/125992 (executing program) 2024/12/18 16:11:03 fetching corpus: 1497, signal 113171/128197 (executing program) 2024/12/18 16:11:03 fetching corpus: 1547, signal 114714/129500 (executing program) 2024/12/18 16:11:04 fetching corpus: 1597, signal 115731/130542 (executing program) 2024/12/18 16:11:04 fetching corpus: 1647, signal 116757/131558 (executing program) 2024/12/18 16:11:04 fetching corpus: 1697, signal 117450/132375 (executing program) 2024/12/18 16:11:04 fetching corpus: 1747, signal 118452/133322 (executing program) 2024/12/18 16:11:04 fetching corpus: 1797, signal 119193/134080 (executing program) 2024/12/18 16:11:04 fetching corpus: 1847, signal 120277/135025 (executing program) 2024/12/18 16:11:04 fetching corpus: 1897, signal 120903/135722 (executing program) 2024/12/18 16:11:04 fetching corpus: 1947, signal 121724/136485 (executing program) 2024/12/18 16:11:04 fetching corpus: 1997, signal 122791/137350 (executing program) 2024/12/18 16:11:05 fetching corpus: 2047, signal 123903/138189 (executing program) 2024/12/18 16:11:05 fetching corpus: 2097, signal 124358/138759 (executing program) 2024/12/18 16:11:05 fetching corpus: 2147, signal 125578/139641 (executing program) 2024/12/18 16:11:05 fetching corpus: 2197, signal 126155/140194 (executing program) 2024/12/18 16:11:05 fetching corpus: 2247, signal 127246/140928 (executing program) 2024/12/18 16:11:05 fetching corpus: 2297, signal 128638/141726 (executing program) 2024/12/18 16:11:05 fetching corpus: 2347, signal 129245/142255 (executing program) 2024/12/18 16:11:05 fetching corpus: 2397, signal 129569/142649 (executing program) 2024/12/18 16:11:06 fetching corpus: 2447, signal 130254/143128 (executing program) 2024/12/18 16:11:06 fetching corpus: 2497, signal 130841/143560 (executing program) 2024/12/18 16:11:06 fetching corpus: 2547, signal 131614/144065 (executing program) 2024/12/18 16:11:06 fetching corpus: 2597, signal 132215/144465 (executing program) 2024/12/18 16:11:06 fetching corpus: 2647, signal 132803/144858 (executing program) 2024/12/18 16:11:06 fetching corpus: 2697, signal 133773/145342 (executing program) 2024/12/18 16:11:06 fetching corpus: 2747, signal 134225/145688 (executing program) 2024/12/18 16:11:06 fetching corpus: 2797, signal 134816/146028 (executing program) 2024/12/18 16:11:07 fetching corpus: 2847, signal 135549/146392 (executing program) 2024/12/18 16:11:07 fetching corpus: 2897, signal 136533/146786 (executing program) 2024/12/18 16:11:07 fetching corpus: 2947, signal 137077/147078 (executing program) 2024/12/18 16:11:07 fetching corpus: 2997, signal 137819/147388 (executing program) 2024/12/18 16:11:07 fetching corpus: 3047, signal 138692/147688 (executing program) 2024/12/18 16:11:07 fetching corpus: 3097, signal 139370/147960 (executing program) 2024/12/18 16:11:07 fetching corpus: 3147, signal 140438/148238 (executing program) 2024/12/18 16:11:07 fetching corpus: 3197, signal 140919/148434 (executing program) 2024/12/18 16:11:07 fetching corpus: 3247, signal 141447/148603 (executing program) 2024/12/18 16:11:08 fetching corpus: 3297, signal 141824/148745 (executing program) 2024/12/18 16:11:08 fetching corpus: 3347, signal 142468/148934 (executing program) 2024/12/18 16:11:08 fetching corpus: 3397, signal 143058/149066 (executing program) 2024/12/18 16:11:08 fetching corpus: 3447, signal 143874/149206 (executing program) 2024/12/18 16:11:08 fetching corpus: 3497, signal 144504/149316 (executing program) 2024/12/18 16:11:08 fetching corpus: 3547, signal 145057/149418 (executing program) 2024/12/18 16:11:08 fetching corpus: 3597, signal 145494/149488 (executing program) 2024/12/18 16:11:09 fetching corpus: 3647, signal 146408/149549 (executing program) 2024/12/18 16:11:09 fetching corpus: 3697, signal 146724/149597 (executing program) 2024/12/18 16:11:09 fetching corpus: 3747, signal 147103/149597 (executing program) 2024/12/18 16:11:09 fetching corpus: 3797, signal 147470/149597 (executing program) 2024/12/18 16:11:09 fetching corpus: 3847, signal 147964/149597 (executing program) 2024/12/18 16:11:09 fetching corpus: 3887, signal 148600/149597 (executing program) 2024/12/18 16:11:09 fetching corpus: 3887, signal 148600/149597 (executing program) 2024/12/18 16:11:13 starting 8 fuzzer processes 16:11:13 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) creat(&(0x7f0000000180)='./file1\x00', 0x0) 16:11:13 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x9, &(0x7f0000000000)=@gcm_128={{}, "aa469f5be864423d", "d32c8c92e31d9cbc6a3a5fa0a8080e75", "fc02973e", "c6ee80092c344a86"}, 0x28) 16:11:13 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000580)) ioctl$KDGKBMODE(r0, 0x4b4a, &(0x7f0000000000)) 16:11:13 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x33, 0x0, &(0x7f00000001c0)) 16:11:13 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)={0x30, r1, 0x42d926fcd0eb0549, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @val={0xc}}}}, 0x30}}, 0x0) [ 101.079075] audit: type=1400 audit(1734538273.954:7): avc: denied { execmem } for pid=272 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:11:13 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000007300)={0x0, 0x0, &(0x7f0000007280)=[{&(0x7f0000000000)={0x2c, 0x11, 0x401, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@loopback}, @typed={0xc, 0x35, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0) 16:11:13 executing program 6: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$PTP_PEROUT_REQUEST2(r0, 0x40383d0c, &(0x7f0000000040)) 16:11:14 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000000)={0x3, 0x0, 0x0, @loopback}, 0x1c) [ 102.372458] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 102.374750] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 102.376293] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 102.381595] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 102.384405] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 102.385543] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 102.508723] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 102.514809] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 102.521256] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 102.522236] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 102.525501] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 102.526878] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 102.529181] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 102.534111] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 102.535520] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 102.555322] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 102.563406] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 102.576991] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 102.579165] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 102.582830] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 102.587132] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 102.590731] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 102.592142] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 102.593216] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 102.599335] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 102.604281] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 102.622891] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 102.633084] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 102.637296] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 102.651236] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 102.652204] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 102.652439] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 102.664080] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 102.664795] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 102.672738] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 102.673767] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 102.680333] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 102.681589] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 102.682407] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 102.684493] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 102.685132] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 102.692745] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 102.693431] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 102.694672] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 102.700920] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 102.708437] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 102.711153] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 102.713761] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 104.471040] Bluetooth: hci0: command tx timeout [ 104.598902] Bluetooth: hci1: command tx timeout [ 104.662671] Bluetooth: hci2: command tx timeout [ 104.663710] Bluetooth: hci4: command tx timeout [ 104.726664] Bluetooth: hci5: command tx timeout [ 104.726683] Bluetooth: hci3: command tx timeout [ 104.791664] Bluetooth: hci7: command tx timeout [ 104.791747] Bluetooth: hci6: command tx timeout [ 106.519830] Bluetooth: hci0: command tx timeout [ 106.647665] Bluetooth: hci1: command tx timeout [ 106.710973] Bluetooth: hci4: command tx timeout [ 106.711012] Bluetooth: hci2: command tx timeout [ 106.776638] Bluetooth: hci3: command tx timeout [ 106.777140] Bluetooth: hci5: command tx timeout [ 106.838653] Bluetooth: hci7: command tx timeout [ 106.838688] Bluetooth: hci6: command tx timeout [ 108.566654] Bluetooth: hci0: command tx timeout [ 108.695127] Bluetooth: hci1: command tx timeout [ 108.758778] Bluetooth: hci4: command tx timeout [ 108.761185] Bluetooth: hci2: command tx timeout [ 108.822889] Bluetooth: hci5: command tx timeout [ 108.822939] Bluetooth: hci3: command tx timeout [ 108.886831] Bluetooth: hci6: command tx timeout [ 108.887913] Bluetooth: hci7: command tx timeout [ 110.614721] Bluetooth: hci0: command tx timeout [ 110.742707] Bluetooth: hci1: command tx timeout [ 110.806669] Bluetooth: hci2: command tx timeout [ 110.806815] Bluetooth: hci4: command tx timeout [ 110.870655] Bluetooth: hci5: command tx timeout [ 110.872206] Bluetooth: hci3: command tx timeout [ 110.936633] Bluetooth: hci7: command tx timeout [ 110.936650] Bluetooth: hci6: command tx timeout [ 164.522999] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 164.529024] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 164.532941] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 164.538226] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 164.544998] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 164.555251] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 164.639059] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 164.645210] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 164.649248] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 164.658169] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 164.661999] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 164.664339] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 164.736957] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 164.738813] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 164.744127] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 164.748195] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 164.750926] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 164.754185] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 164.755286] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 164.764249] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 164.777836] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 164.793839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 164.796403] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 164.798465] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 164.858635] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 164.876112] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 164.880140] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 164.885235] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 164.886598] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 164.886982] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 164.893204] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 164.895831] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 164.907539] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 164.911093] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 164.914345] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 164.917117] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 164.919237] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 164.966058] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 164.968181] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 164.976216] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 164.978502] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 165.001541] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 165.016219] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 165.033502] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 165.040928] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 165.048041] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 165.070046] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 165.071929] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 166.616650] Bluetooth: hci0: command tx timeout [ 166.679132] Bluetooth: hci1: command tx timeout [ 166.807080] Bluetooth: hci3: command tx timeout [ 166.870676] Bluetooth: hci2: command tx timeout [ 166.934826] Bluetooth: hci5: command tx timeout [ 167.062942] Bluetooth: hci4: command tx timeout [ 167.190817] Bluetooth: hci7: command tx timeout [ 167.191882] Bluetooth: hci6: command tx timeout [ 168.662746] Bluetooth: hci0: command tx timeout [ 168.728085] Bluetooth: hci1: command tx timeout [ 168.854987] Bluetooth: hci3: command tx timeout [ 168.918745] Bluetooth: hci2: command tx timeout [ 168.982857] Bluetooth: hci5: command tx timeout [ 169.112685] Bluetooth: hci4: command tx timeout [ 169.239987] Bluetooth: hci7: command tx timeout [ 169.241817] Bluetooth: hci6: command tx timeout [ 170.712018] Bluetooth: hci0: command tx timeout [ 170.775659] Bluetooth: hci1: command tx timeout [ 170.905224] Bluetooth: hci3: command tx timeout [ 170.967692] Bluetooth: hci2: command tx timeout [ 171.031626] Bluetooth: hci5: command tx timeout [ 171.160031] Bluetooth: hci4: command tx timeout [ 171.286681] Bluetooth: hci7: command tx timeout [ 171.287200] Bluetooth: hci6: command tx timeout [ 172.758626] Bluetooth: hci0: command tx timeout [ 172.824611] Bluetooth: hci1: command tx timeout [ 172.950665] Bluetooth: hci3: command tx timeout [ 173.016595] Bluetooth: hci2: command tx timeout [ 173.078723] Bluetooth: hci5: command tx timeout [ 173.207672] Bluetooth: hci4: command tx timeout [ 173.335664] Bluetooth: hci6: command tx timeout [ 173.336121] Bluetooth: hci7: command tx timeout [ 226.792161] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 226.796974] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 226.801113] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 226.808962] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 226.813328] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 226.815810] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 227.170818] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 227.173736] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 227.175517] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 227.181892] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 227.185834] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 227.187762] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 227.237688] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 227.243917] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 227.247900] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 227.260133] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 227.269396] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 227.271532] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 227.322923] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 227.328258] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 227.331793] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 227.348922] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 227.360227] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 227.369135] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 227.384379] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 227.409103] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 227.412381] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 227.425073] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 227.427352] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 227.442049] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 227.446986] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 227.448904] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 227.453780] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 227.504508] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 227.506778] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 227.510993] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 227.512261] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 227.514145] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 227.515932] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 227.529726] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 227.533164] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 227.557114] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 227.558614] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 227.563294] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 227.567892] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 227.606208] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 227.631137] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 227.653253] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 228.887654] Bluetooth: hci0: command tx timeout [ 229.270674] Bluetooth: hci1: command tx timeout [ 229.334904] Bluetooth: hci2: command tx timeout [ 229.462735] Bluetooth: hci3: command tx timeout [ 229.590869] Bluetooth: hci4: command tx timeout [ 229.591593] Bluetooth: hci5: command tx timeout [ 229.655613] Bluetooth: hci6: command tx timeout [ 229.718728] Bluetooth: hci7: command tx timeout [ 230.934732] Bluetooth: hci0: command tx timeout [ 231.318658] Bluetooth: hci1: command tx timeout [ 231.384737] Bluetooth: hci2: command tx timeout [ 231.511755] Bluetooth: hci3: command tx timeout [ 231.638659] Bluetooth: hci5: command tx timeout [ 231.638698] Bluetooth: hci4: command tx timeout [ 231.703757] Bluetooth: hci6: command tx timeout [ 231.766633] Bluetooth: hci7: command tx timeout [ 232.982663] Bluetooth: hci0: command tx timeout [ 233.367579] Bluetooth: hci1: command tx timeout [ 233.430601] Bluetooth: hci2: command tx timeout [ 233.559617] Bluetooth: hci3: command tx timeout [ 233.686998] Bluetooth: hci5: command tx timeout [ 233.687478] Bluetooth: hci4: command tx timeout [ 233.750788] Bluetooth: hci6: command tx timeout [ 233.815589] Bluetooth: hci7: command tx timeout [ 235.030688] Bluetooth: hci0: command tx timeout [ 235.414693] Bluetooth: hci1: command tx timeout [ 235.478641] Bluetooth: hci2: command tx timeout [ 235.606720] Bluetooth: hci3: command tx timeout [ 235.734681] Bluetooth: hci4: command tx timeout [ 235.734704] Bluetooth: hci5: command tx timeout [ 235.799179] Bluetooth: hci6: command tx timeout [ 235.862889] Bluetooth: hci7: command tx timeout [ 285.611580] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 285.612320] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 288.933040] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 288.936766] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 288.939060] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 288.946762] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 288.950473] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 288.953460] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 289.324990] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 289.333082] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 289.335314] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 289.343127] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 289.351767] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 289.355194] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 289.420971] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 289.423228] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 289.435214] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 289.438935] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 289.440851] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 289.446965] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 289.450682] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 289.453943] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 289.462898] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 289.465482] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 289.469394] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 289.472350] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 289.474495] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 289.477972] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 289.481853] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 289.484368] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 289.491076] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 289.493763] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 289.495153] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 289.497208] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 289.500674] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 289.525064] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 289.528064] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 289.530962] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 289.572973] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 289.595810] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 289.600937] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 289.605451] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 289.608781] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 289.614225] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 289.614596] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 289.616201] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 289.617961] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 289.671429] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 289.680892] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 289.685368] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 291.030703] Bluetooth: hci0: command tx timeout [ 291.414639] Bluetooth: hci1: command tx timeout [ 291.606635] Bluetooth: hci4: command tx timeout [ 291.607468] Bluetooth: hci3: command tx timeout [ 291.608133] Bluetooth: hci2: command tx timeout [ 291.734685] Bluetooth: hci7: command tx timeout [ 291.734746] Bluetooth: hci6: command tx timeout [ 291.800138] Bluetooth: hci5: command tx timeout [ 293.079592] Bluetooth: hci0: command tx timeout [ 293.462675] Bluetooth: hci1: command tx timeout [ 293.655605] Bluetooth: hci2: command tx timeout [ 293.656102] Bluetooth: hci4: command tx timeout [ 293.656584] Bluetooth: hci3: command tx timeout [ 293.782664] Bluetooth: hci7: command tx timeout [ 293.782799] Bluetooth: hci6: command tx timeout [ 293.847614] Bluetooth: hci5: command tx timeout [ 295.126579] Bluetooth: hci0: command tx timeout [ 295.510608] Bluetooth: hci1: command tx timeout [ 295.704570] Bluetooth: hci3: command tx timeout [ 295.705079] Bluetooth: hci4: command tx timeout [ 295.705549] Bluetooth: hci2: command tx timeout [ 295.830627] Bluetooth: hci7: command tx timeout [ 295.830690] Bluetooth: hci6: command tx timeout [ 295.895636] Bluetooth: hci5: command tx timeout [ 297.175848] Bluetooth: hci0: command tx timeout [ 297.559775] Bluetooth: hci1: command tx timeout [ 297.751804] Bluetooth: hci2: command tx timeout [ 297.751937] Bluetooth: hci4: command tx timeout [ 297.752283] Bluetooth: hci3: command tx timeout [ 297.878905] Bluetooth: hci7: command tx timeout [ 297.879608] Bluetooth: hci6: command tx timeout [ 297.943757] Bluetooth: hci5: command tx timeout [ 346.207136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 346.207828] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 346.535584] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 346.536210] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 347.487653] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 347.488293] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 347.883594] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 347.884258] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 347.982629] audit: type=1400 audit(1734538520.854:8): avc: denied { open } for pid=14136 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 347.988299] audit: type=1400 audit(1734538520.855:9): avc: denied { kernel } for pid=14136 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 16:15:21 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x33, 0x0, &(0x7f00000001c0)) 16:15:21 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x33, 0x0, &(0x7f00000001c0)) 16:15:21 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x33, 0x0, &(0x7f00000001c0)) 16:15:21 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000001180)=ANY=[], 0x220) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) copy_file_range(r1, 0x0, r1, &(0x7f00000000c0)=0xdd90, 0x20, 0x0) 16:15:21 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000001180)=ANY=[], 0x220) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) copy_file_range(r1, 0x0, r1, &(0x7f00000000c0)=0xdd90, 0x20, 0x0) 16:15:21 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000001180)=ANY=[], 0x220) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) copy_file_range(r1, 0x0, r1, &(0x7f00000000c0)=0xdd90, 0x20, 0x0) 16:15:21 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000001180)=ANY=[], 0x220) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) copy_file_range(r1, 0x0, r1, &(0x7f00000000c0)=0xdd90, 0x20, 0x0) 16:15:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000001180)=ANY=[], 0x220) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) copy_file_range(r1, 0x0, r1, &(0x7f00000000c0)=0xdd90, 0x20, 0x0) [ 351.521652] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 351.526483] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 351.529677] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 351.535306] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 351.540056] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 351.542771] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 351.600676] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 351.608945] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 351.611303] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 351.621417] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 351.625445] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 351.628063] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 351.799662] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 351.813830] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 351.816126] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 351.829002] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 351.833842] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 351.842707] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 351.863898] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 351.874488] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 351.879720] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 351.883450] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 351.891073] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 351.898866] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 351.900571] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 351.910017] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 351.913978] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 351.921308] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 351.926120] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 351.928166] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 351.931110] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 351.935923] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 351.939441] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 351.946779] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 352.000859] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 352.005827] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 352.008021] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 352.013304] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 352.015992] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 352.052945] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 352.055934] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 352.058337] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 353.558712] Bluetooth: hci0: command tx timeout [ 353.686639] Bluetooth: hci1: command tx timeout [ 353.942707] Bluetooth: hci2: command tx timeout [ 353.943757] Bluetooth: hci5: command tx timeout [ 354.006629] Bluetooth: hci7: command tx timeout [ 354.134641] Bluetooth: hci4: command tx timeout [ 354.198662] Bluetooth: hci6: command tx timeout [ 355.606720] Bluetooth: hci0: command tx timeout [ 355.735574] Bluetooth: hci1: command tx timeout [ 355.991732] Bluetooth: hci5: command tx timeout [ 355.991918] Bluetooth: hci2: command tx timeout [ 356.054625] Bluetooth: hci7: command tx timeout [ 356.182581] Bluetooth: hci4: command tx timeout [ 356.246718] Bluetooth: hci6: command tx timeout [ 357.656589] Bluetooth: hci0: command tx timeout [ 357.782795] Bluetooth: hci1: command tx timeout [ 358.040571] Bluetooth: hci5: command tx timeout [ 358.040640] Bluetooth: hci2: command tx timeout [ 358.103742] Bluetooth: hci7: command tx timeout [ 358.230777] Bluetooth: hci4: command tx timeout [ 358.295692] Bluetooth: hci6: command tx timeout [ 359.703585] Bluetooth: hci0: command tx timeout [ 359.830938] Bluetooth: hci1: command tx timeout [ 360.087449] Bluetooth: hci2: command tx timeout [ 360.087480] Bluetooth: hci5: command tx timeout [ 360.150607] Bluetooth: hci7: command tx timeout [ 360.278592] Bluetooth: hci4: command tx timeout [ 360.342819] Bluetooth: hci6: command tx timeout [ 409.876621] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 409.877291] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 410.139533] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 410.140156] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 413.080913] Bluetooth: hci3: command 0x0406 tx timeout [ 413.988956] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 413.994992] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 413.997386] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 414.004813] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 414.008419] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 414.010869] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 414.189292] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 414.193821] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 414.199751] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 414.204321] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 414.208204] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 414.210624] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 414.256083] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 414.262127] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 414.265930] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 414.287864] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 414.292949] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 414.300722] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 414.332340] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 414.341786] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 414.344359] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 414.347803] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 414.349230] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 414.351272] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 414.352881] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 414.357954] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 414.369881] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 414.372200] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 414.374855] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 414.376701] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 414.391888] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 414.396191] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 414.398808] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 414.402836] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 414.405820] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 414.408852] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 414.463067] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 414.470924] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 414.481907] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 414.486084] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 414.488466] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 414.492839] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 416.086783] Bluetooth: hci0: command tx timeout [ 416.279008] Bluetooth: hci1: command tx timeout [ 416.406630] Bluetooth: hci2: command tx timeout [ 416.470613] Bluetooth: hci5: command tx timeout [ 416.471596] Bluetooth: hci6: command tx timeout [ 416.471629] Bluetooth: hci4: command tx timeout [ 416.534589] Bluetooth: hci7: command tx timeout [ 418.135729] Bluetooth: hci0: command tx timeout [ 418.327530] Bluetooth: hci1: command tx timeout [ 418.456529] Bluetooth: hci2: command tx timeout [ 418.518576] Bluetooth: hci4: command tx timeout [ 418.518644] Bluetooth: hci6: command tx timeout [ 418.519053] Bluetooth: hci5: command tx timeout [ 418.584739] Bluetooth: hci7: command tx timeout [ 420.182799] Bluetooth: hci0: command tx timeout [ 420.375676] Bluetooth: hci1: command tx timeout [ 420.503569] Bluetooth: hci2: command tx timeout [ 420.566539] Bluetooth: hci5: command tx timeout [ 420.567026] Bluetooth: hci6: command tx timeout [ 420.567048] Bluetooth: hci4: command tx timeout [ 420.630812] Bluetooth: hci7: command tx timeout [ 422.230624] Bluetooth: hci0: command tx timeout [ 422.422619] Bluetooth: hci1: command tx timeout [ 422.550735] Bluetooth: hci2: command tx timeout [ 422.616658] Bluetooth: hci4: command tx timeout [ 422.616797] Bluetooth: hci5: command tx timeout [ 422.617086] Bluetooth: hci6: command tx timeout [ 422.678615] Bluetooth: hci7: command tx timeout [ 465.825671] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 465.826292] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 466.117007] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 466.117710] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 466.448597] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 466.449224] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 466.818266] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 466.818925] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 467.106545] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 467.107169] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 467.347009] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 467.348389] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 468.173871] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 468.174579] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 468.248193] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 468.248852] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 468.316243] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 468.317012] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 468.353061] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 468.353875] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 468.413070] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 468.414382] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 468.579334] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 468.580013] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 468.754607] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 468.755337] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 468.908404] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 468.909263] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 469.206633] capability: warning: `syz-executor.2' uses deprecated v2 capabilities in a way that may be insecure 16:17:22 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000580)) ioctl$KDGKBMODE(r0, 0x4b4a, &(0x7f0000000000)) 16:17:22 executing program 6: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$PTP_PEROUT_REQUEST2(r0, 0x40383d0c, &(0x7f0000000040)) 16:17:22 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) creat(&(0x7f0000000180)='./file1\x00', 0x0) 16:17:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000001180)=ANY=[], 0x220) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) copy_file_range(r1, 0x0, r1, &(0x7f00000000c0)=0xdd90, 0x20, 0x0) 16:17:22 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000007300)={0x0, 0x0, &(0x7f0000007280)=[{&(0x7f0000000000)={0x2c, 0x11, 0x401, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@loopback}, @typed={0xc, 0x35, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0) 16:17:22 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x9, &(0x7f0000000000)=@gcm_128={{}, "aa469f5be864423d", "d32c8c92e31d9cbc6a3a5fa0a8080e75", "fc02973e", "c6ee80092c344a86"}, 0x28) 16:17:22 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000000)={0x3, 0x0, 0x0, @loopback}, 0x1c) 16:17:22 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)={0x30, r1, 0x42d926fcd0eb0549, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @val={0xc}}}}, 0x30}}, 0x0) 16:17:22 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) creat(&(0x7f0000000180)='./file1\x00', 0x0) 16:17:22 executing program 6: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$PTP_PEROUT_REQUEST2(r0, 0x40383d0c, &(0x7f0000000040)) 16:17:22 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000580)) ioctl$KDGKBMODE(r0, 0x4b4a, &(0x7f0000000000)) 16:17:22 executing program 6: r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$PTP_PEROUT_REQUEST2(r0, 0x40383d0c, &(0x7f0000000040)) 16:17:22 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) creat(&(0x7f0000000180)='./file1\x00', 0x0) 16:17:22 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000000)={0x3, 0x0, 0x0, @loopback}, 0x1c) 16:17:22 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000007300)={0x0, 0x0, &(0x7f0000007280)=[{&(0x7f0000000000)={0x2c, 0x11, 0x401, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@loopback}, @typed={0xc, 0x35, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0) 16:17:22 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)={0x30, r1, 0x42d926fcd0eb0549, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @val={0xc}}}}, 0x30}}, 0x0) 16:17:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000001180)=ANY=[], 0x220) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) copy_file_range(r1, 0x0, r1, &(0x7f00000000c0)=0xdd90, 0x20, 0x0) 16:17:22 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x9, &(0x7f0000000000)=@gcm_128={{}, "aa469f5be864423d", "d32c8c92e31d9cbc6a3a5fa0a8080e75", "fc02973e", "c6ee80092c344a86"}, 0x28) 16:17:22 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000007300)={0x0, 0x0, &(0x7f0000007280)=[{&(0x7f0000000000)={0x2c, 0x11, 0x401, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@loopback}, @typed={0xc, 0x35, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0) 16:17:22 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000580)) ioctl$KDGKBMODE(r0, 0x4b4a, &(0x7f0000000000)) 16:17:23 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000580)) ioctl$KDGKBMODE(r0, 0x4b4a, &(0x7f0000000000)) 16:17:23 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000000)={0x3, 0x0, 0x0, @loopback}, 0x1c) 16:17:23 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x9, &(0x7f0000000000)=@gcm_128={{}, "aa469f5be864423d", "d32c8c92e31d9cbc6a3a5fa0a8080e75", "fc02973e", "c6ee80092c344a86"}, 0x28) 16:17:23 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000580)) ioctl$KDGKBMODE(r0, 0x4b4a, &(0x7f0000000000)) 16:17:23 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000052005fff000000c9951ff1310a"], 0x28}}, 0x0) 16:17:23 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000680)=0x3b) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) write$binfmt_aout(0xffffffffffffffff, 0x0, 0x220) sendfile(0xffffffffffffffff, r0, 0x0, 0x4001) 16:17:23 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setgroups(0x1, &(0x7f0000002a40)=[0xffffffffffffffff]) 16:17:23 executing program 7: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={[{@journal_path={'journal_path', 0x3d, './file1'}}]}) 16:17:23 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)={0x30, r1, 0x42d926fcd0eb0549, 0x0, 0x0, {{}, {@val={0x8}, @val={0x8}, @val={0xc}}}}, 0x30}}, 0x0) 16:17:23 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c04, 0xffffffffffffffff) [ 470.528485] hrtimer: interrupt took 29907 ns [ 470.595537] journal_path: Lookup failure for './file1' [ 470.596539] EXT4-fs: error: could not find journal device path [ 470.613370] journal_path: Lookup failure for './file1' [ 470.614363] EXT4-fs: error: could not find journal device path 16:17:23 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setgroups(0x1, &(0x7f0000002a40)=[0xffffffffffffffff]) 16:17:23 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000052005fff000000c9951ff1310a"], 0x28}}, 0x0) 16:17:23 executing program 7: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={[{@journal_path={'journal_path', 0x3d, './file1'}}]}) 16:17:23 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setgroups(0x1, &(0x7f0000002a40)=[0xffffffffffffffff]) 16:17:23 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c04, 0xffffffffffffffff) 16:17:23 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000680)=0x3b) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) write$binfmt_aout(0xffffffffffffffff, 0x0, 0x220) sendfile(0xffffffffffffffff, r0, 0x0, 0x4001) 16:17:23 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000580)) ioctl$KDGKBMODE(r0, 0x4b4a, &(0x7f0000000000)) 16:17:23 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setgroups(0x1, &(0x7f0000002a40)=[0xffffffffffffffff]) [ 471.041244] journal_path: Lookup failure for './file1' [ 471.042353] EXT4-fs: error: could not find journal device path 16:17:24 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000052005fff000000c9951ff1310a"], 0x28}}, 0x0) 16:17:24 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000680)=0x3b) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) write$binfmt_aout(0xffffffffffffffff, 0x0, 0x220) sendfile(0xffffffffffffffff, r0, 0x0, 0x4001) 16:17:24 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c04, 0xffffffffffffffff) [ 496.821091] watchdog: BUG: soft lockup - CPU#1 stuck for 26s! [syz-executor.0:20489] [ 496.821132] Modules linked in: [ 496.821146] irq event stamp: 2708951 [ 496.821159] hardirqs last enabled at (2708950): [] irqentry_exit+0x3b/0x90 [ 496.821223] hardirqs last disabled at (2708951): [] sysvec_apic_timer_interrupt+0xf/0x80 [ 496.821294] softirqs last enabled at (2681236): [] handle_softirqs+0x50c/0x770 [ 496.821354] softirqs last disabled at (2681245): [] __irq_exit_rcu+0xc4/0x100 [ 496.821415] CPU: 1 UID: 0 PID: 20489 Comm: syz-executor.0 Not tainted 6.13.0-rc3-next-20241218 #1 [ 496.821459] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 496.821480] RIP: 0010:lock_acquire.part.0+0x10e/0x320 [ 496.821535] Code: b6 c9 e8 35 a7 ff ff b8 ff ff ff ff 48 83 c4 28 65 0f c1 05 7c 45 b2 7e 83 f8 01 0f 85 aa 01 00 00 48 85 ed 0f 85 9b 01 00 00 <48> b8 00 00 00 00 00 fc ff df 48 01 c3 48 c7 03 00 00 00 00 48 c7 [ 496.821572] RSP: 0018:ffff88806cf096c8 EFLAGS: 00000206 [ 496.821600] RAX: 0000000000000001 RBX: 1ffff1100d9e12dc RCX: 1ffff1100d9e12c1 [ 496.821626] RDX: 1ffff110079004c0 RSI: 0000000000000001 RDI: 0000000075eab062 [ 496.821651] RBP: 0000000000000200 R08: 0000000000000000 R09: fffffbfff0fdf9dc [ 496.821676] R10: ffffffff87efcee7 R11: 0000000000000003 R12: ffffffff85c16c00 [ 496.821702] R13: 0000000000000000 R14: ffff88803c801bc0 R15: ffff88802adf5200 [ 496.821729] FS: 00007f78077b5700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 496.821765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 496.821792] CR2: 0000000000000000 CR3: 000000003a11c000 CR4: 0000000000350ef0 [ 496.821817] Call Trace: [ 496.821826] [ 496.821840] ? watchdog_timer_fn+0x3ee/0x510 [ 496.821881] ? __pfx_watchdog_timer_fn+0x10/0x10 [ 496.821927] ? __hrtimer_run_queues+0x57c/0xa80 [ 496.821983] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 496.822020] ? ktime_get_update_offsets_now+0x252/0x3c0 [ 496.822094] ? hrtimer_interrupt+0x369/0x830 [ 496.822155] ? __sysvec_apic_timer_interrupt+0xc2/0x330 [ 496.822216] ? sysvec_apic_timer_interrupt+0x34/0x80 [ 496.822278] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 496.822349] ? lock_acquire.part.0+0x10e/0x320 [ 496.822406] ? srso_return_thunk+0x5/0x5f [ 496.822444] ? lock_release+0x20f/0x6f0 [ 496.822493] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 496.822545] ? srso_return_thunk+0x5/0x5f [ 496.822582] ? trace_lock_acquire+0x13b/0x1b0 [ 496.822620] ? srso_return_thunk+0x5/0x5f [ 496.822657] ? lock_acquire+0x32/0xc0 [ 496.822710] ? srso_return_thunk+0x5/0x5f [ 496.822746] ? lock_acquire+0x32/0xc0 [ 496.822793] ? __is_insn_slot_addr+0x2e/0x290 [ 496.822863] __is_insn_slot_addr+0x3f/0x290 [ 496.822923] ? __is_insn_slot_addr+0x2e/0x290 [ 496.822989] kernel_text_address+0x5b/0xc0 [ 496.823024] ? arch_stack_walk+0x9d/0xf0 [ 496.823068] __kernel_text_address+0xd/0x40 [ 496.823104] unwind_get_return_address+0x59/0xa0 [ 496.823159] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 496.823213] arch_stack_walk+0x9d/0xf0 [ 496.823278] stack_trace_save+0x8f/0xc0 [ 496.823329] ? __pfx_stack_trace_save+0x10/0x10 [ 496.823386] ? srso_return_thunk+0x5/0x5f [ 496.823423] ? kasan_save_stack+0x34/0x50 [ 496.823458] ? kasan_save_stack+0x24/0x50 [ 496.823493] ? kasan_record_aux_stack+0x89/0xa0 [ 496.823547] ? __call_rcu_common.constprop.0+0x6a/0xaa0 [ 496.823597] ? kmem_cache_free+0x2ae/0x470 [ 496.823654] kasan_save_stack+0x24/0x50 [ 496.823689] ? kasan_save_stack+0x24/0x50 [ 496.823723] ? kasan_save_track+0x14/0x30 [ 496.823758] ? kasan_save_free_info+0x3a/0x60 [ 496.823811] ? __kasan_slab_free+0x38/0x50 [ 496.823849] ? kmem_cache_free+0x138/0x470 [ 496.823902] ? skb_release_data+0x814/0x990 [ 496.823964] ? consume_skb+0xd0/0x160 [ 496.824001] ? mac80211_hwsim_tx_frame+0x1f6/0x2a0 [ 496.824055] ? mac80211_hwsim_beacon_tx+0x546/0x950 [ 496.824119] ? __iterate_interfaces+0x2e0/0x650 [ 496.824168] ? ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0 [ 496.824223] ? mac80211_hwsim_beacon+0x105/0x200 [ 496.824263] ? __hrtimer_run_queues+0x1ab/0xa80 [ 496.824299] ? hrtimer_run_softirq+0x14c/0x310 [ 496.824335] ? handle_softirqs+0x1b1/0x770 [ 496.824384] ? __irq_exit_rcu+0xc4/0x100 [ 496.824432] ? irq_exit_rcu+0x9/0x20 [ 496.824480] ? sysvec_apic_timer_interrupt+0x70/0x80 [ 496.824540] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 496.824590] ? qlist_free_all+0x25/0x160 [ 496.824648] ? kasan_quarantine_reduce+0x19f/0x240 [ 496.824711] ? __kasan_slab_alloc+0x49/0x70 [ 496.824749] ? kmem_cache_alloc_noprof+0x13d/0x3d0 [ 496.824803] ? getname_flags.part.0+0x48/0x550 [ 496.824846] ? getname+0x8f/0xd0 [ 496.824896] ? do_sys_openat2+0xec/0x1d0 [ 496.824938] ? __x64_sys_openat+0x143/0x200 [ 496.824983] ? do_syscall_64+0xbf/0x1d0 [ 496.825023] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.825074] ? __pfx_lock_release+0x10/0x10 [ 496.825121] ? trace_lock_acquire+0x13b/0x1b0 [ 496.825160] ? srso_return_thunk+0x5/0x5f [ 496.825203] ? srso_return_thunk+0x5/0x5f [ 496.825239] ? lock_acquire+0x32/0xc0 [ 496.825286] ? __virt_addr_valid+0x1c6/0x5d0 [ 496.825346] ? srso_return_thunk+0x5/0x5f [ 496.825383] ? mark_held_locks+0x9e/0xe0 [ 496.825429] ? __virt_addr_valid+0x100/0x5d0 [ 496.825486] ? srso_return_thunk+0x5/0x5f [ 496.825523] ? lockdep_hardirqs_on_prepare+0x12b/0x3f0 [ 496.825577] ? srso_return_thunk+0x5/0x5f [ 496.825613] ? __call_rcu_common.constprop.0+0x604/0xaa0 [ 496.825666] kasan_save_track+0x14/0x30 [ 496.825702] kasan_save_free_info+0x3a/0x60 [ 496.825757] __kasan_slab_free+0x38/0x50 [ 496.825797] kmem_cache_free+0x138/0x470 [ 496.825853] ? skb_release_data+0x814/0x990 [ 496.825924] skb_release_data+0x814/0x990 [ 496.826002] consume_skb+0xd0/0x160 [ 496.826042] mac80211_hwsim_tx_frame+0x1f6/0x2a0 [ 496.826104] mac80211_hwsim_beacon_tx+0x546/0x950 [ 496.826167] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 496.826218] ? srso_return_thunk+0x5/0x5f [ 496.826262] __iterate_interfaces+0x2e0/0x650 [ 496.826313] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 496.826376] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 496.826433] ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0 [ 496.826495] mac80211_hwsim_beacon+0x105/0x200 [ 496.826535] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 496.826581] __hrtimer_run_queues+0x1ab/0xa80 [ 496.826636] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 496.826673] ? ktime_get_update_offsets_now+0x252/0x3c0 [ 496.826746] hrtimer_run_softirq+0x14c/0x310 [ 496.826790] handle_softirqs+0x1b1/0x770 [ 496.826853] __irq_exit_rcu+0xc4/0x100 [ 496.826908] irq_exit_rcu+0x9/0x20 [ 496.826956] sysvec_apic_timer_interrupt+0x70/0x80 [ 496.827017] [ 496.827028] [ 496.827041] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 496.827091] RIP: 0010:qlist_free_all+0x25/0x160 [ 496.827153] Code: 90 90 90 90 90 48 8b 07 48 85 c0 0f 84 41 01 00 00 41 57 41 56 41 55 49 89 fd 41 54 49 89 f4 55 53 eb 3e 48 63 95 c0 00 00 00 <48> 8b 18 48 89 ef 48 29 d0 48 89 c6 49 89 c6 e8 77 f0 ff ff 49 89 [ 496.827188] RSP: 0018:ffff88803e5dfc70 EFLAGS: 00000246 [ 496.827216] RAX: ffff888015a15000 RBX: ffff888015a15000 RCX: ffffea0000568540 [ 496.827243] RDX: 0000000000000000 RSI: ffff888009414000 RDI: ffff88806cf41540 [ 496.827268] RBP: ffff888009414000 R08: 0000000000000000 R09: ffffed100d9e82a8 [ 496.827293] R10: ffff88806cf41543 R11: 00000000000007e0 R12: 0000000000000000 [ 496.827318] R13: ffff88803e5dfca8 R14: ffff888039020000 R15: ffff888039020000 [ 496.827376] kasan_quarantine_reduce+0x19f/0x240 [ 496.827445] __kasan_slab_alloc+0x49/0x70 [ 496.827489] kmem_cache_alloc_noprof+0x13d/0x3d0 [ 496.827558] getname_flags.part.0+0x48/0x550 [ 496.827608] getname+0x8f/0xd0 [ 496.827660] do_sys_openat2+0xec/0x1d0 [ 496.827705] ? __pfx_do_sys_openat2+0x10/0x10 [ 496.827749] ? ktime_get+0x16d/0x270 [ 496.827800] ? srso_return_thunk+0x5/0x5f [ 496.827837] ? srso_return_thunk+0x5/0x5f [ 496.827873] ? clockevents_program_event+0x135/0x360 [ 496.827940] __x64_sys_openat+0x143/0x200 [ 496.827987] ? __pfx___x64_sys_openat+0x10/0x10 [ 496.828056] do_syscall_64+0xbf/0x1d0 [ 496.828110] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.828156] RIP: 0033:0x7f780a23fb19 [ 496.828182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 496.828218] RSP: 002b:00007f78077b5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 496.828252] RAX: ffffffffffffffda RBX: 00007f780a352f60 RCX: 00007f780a23fb19 [ 496.828278] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c [ 496.828303] RBP: 00007f780a299f6d R08: 0000000000000000 R09: 0000000000000000 [ 496.828327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 496.828351] R13: 00007ffc86b6314f R14: 00007f78077b5300 R15: 0000000000022000 [ 496.828402] [ 496.828414] Sending NMI from CPU 1 to CPUs 0: [ 496.894102] NMI backtrace for cpu 0 skipped: idling at default_idle+0x1e/0x30 16:17:51 executing program 7: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={[{@journal_path={'journal_path', 0x3d, './file1'}}]}) 16:17:51 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c04, 0xffffffffffffffff) 16:17:51 executing program 4: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000680)=@abs={0x1}, 0x6e) connect$unix(r0, &(0x7f0000000000)=@abs={0x1}, 0x6e) 16:17:51 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000200), &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=ANY=[]) setxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='system.posix_acl_default\x00', &(0x7f0000000280), 0x24, 0x0) llistxattr(&(0x7f0000000340)='./file0\x00', 0x0, 0x0) 16:17:51 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000680)=0x3b) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) write$binfmt_aout(0xffffffffffffffff, 0x0, 0x220) sendfile(0xffffffffffffffff, r0, 0x0, 0x4001) 16:17:51 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000680)=0x3b) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) write$binfmt_aout(0xffffffffffffffff, 0x0, 0x220) sendfile(0xffffffffffffffff, r0, 0x0, 0x4001) 16:17:51 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000052005fff000000c9951ff1310a"], 0x28}}, 0x0) 16:17:51 executing program 6: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCETHTOOL(r0, 0x8932, &(0x7f0000000080)={'wlan1\x00', 0x0}) [ 499.180864] journal_path: Lookup failure for './file1' [ 499.181819] EXT4-fs: error: could not find journal device path 16:17:52 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000680)=0x3b) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) write$binfmt_aout(0xffffffffffffffff, 0x0, 0x220) sendfile(0xffffffffffffffff, r0, 0x0, 0x4001) 16:17:52 executing program 6: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)={0x0, 0x0, 0x7a2}) 16:17:52 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000200), &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=ANY=[]) setxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='system.posix_acl_default\x00', &(0x7f0000000280), 0x24, 0x0) llistxattr(&(0x7f0000000340)='./file0\x00', 0x0, 0x0) 16:17:52 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000680)=0x3b) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000640)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) write$binfmt_aout(0xffffffffffffffff, 0x0, 0x220) sendfile(0xffffffffffffffff, r0, 0x0, 0x4001) 16:17:52 executing program 7: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={[{@journal_path={'journal_path', 0x3d, './file1'}}]}) 16:17:52 executing program 4: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000680)=@abs={0x1}, 0x6e) connect$unix(r0, &(0x7f0000000000)=@abs={0x1}, 0x6e) 16:17:52 executing program 1: syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000026c0)={[{@size={'size', 0x3d, [0x67]}}], [{@seclabel}]}) 16:17:52 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = gettid() r1 = getpid() rt_tgsigqueueinfo(r1, r0, 0x0, &(0x7f0000000340)) [ 499.825321] journal_path: Lookup failure for './file1' [ 499.826077] EXT4-fs: error: could not find journal device path [ 499.841631] program syz-executor.6 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 499.853137] program syz-executor.6 is using a deprecated SCSI ioctl, please convert it to SG_IO 16:17:52 executing program 4: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000680)=@abs={0x1}, 0x6e) connect$unix(r0, &(0x7f0000000000)=@abs={0x1}, 0x6e) 16:17:52 executing program 4: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000680)=@abs={0x1}, 0x6e) connect$unix(r0, &(0x7f0000000000)=@abs={0x1}, 0x6e) 16:17:52 executing program 4: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000005, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) fgetxattr(r0, &(0x7f0000000000)=@known='com.apple.FinderInfo\x00', 0x0, 0x0) 16:17:52 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x16, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0x0, 0x4d, 0x0, '\x00', [{}, {0x800, 0x0, 0x80000000000}]}) stat(&(0x7f0000000280)='./file1\x00', &(0x7f00000004c0)) 16:17:52 executing program 6: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)={0x0, 0x0, 0x7a2}) 16:17:52 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = gettid() r1 = getpid() rt_tgsigqueueinfo(r1, r0, 0x0, &(0x7f0000000340)) 16:17:52 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000200), &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=ANY=[]) setxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='system.posix_acl_default\x00', &(0x7f0000000280), 0x24, 0x0) llistxattr(&(0x7f0000000340)='./file0\x00', 0x0, 0x0) [ 500.230514] program syz-executor.6 is using a deprecated SCSI ioctl, please convert it to SG_IO 16:17:53 executing program 1: syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000026c0)={[{@size={'size', 0x3d, [0x67]}}], [{@seclabel}]}) 16:17:53 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = gettid() r1 = getpid() rt_tgsigqueueinfo(r1, r0, 0x0, &(0x7f0000000340)) 16:17:53 executing program 6: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)={0x0, 0x0, 0x7a2}) 16:17:53 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = gettid() r1 = getpid() rt_tgsigqueueinfo(r1, r0, 0x0, &(0x7f0000000340)) 16:17:53 executing program 4: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000005, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) fgetxattr(r0, &(0x7f0000000000)=@known='com.apple.FinderInfo\x00', 0x0, 0x0) 16:17:53 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000200), &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=ANY=[]) setxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='system.posix_acl_default\x00', &(0x7f0000000280), 0x24, 0x0) llistxattr(&(0x7f0000000340)='./file0\x00', 0x0, 0x0) 16:17:53 executing program 0: signalfd4(0xffffffffffffffff, &(0x7f0000000100), 0x8, 0x0) sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) openat$nvram(0xffffffffffffff9c, &(0x7f00000012c0), 0x80, 0x0) [ 500.489492] program syz-executor.6 is using a deprecated SCSI ioctl, please convert it to SG_IO 16:17:53 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x16, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0x0, 0x4d, 0x0, '\x00', [{}, {0x800, 0x0, 0x80000000000}]}) stat(&(0x7f0000000280)='./file1\x00', &(0x7f00000004c0)) 16:17:54 executing program 5: syz_emit_ethernet(0x46, &(0x7f0000001280)={@multicast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @source_quench={0x4, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @remote}, "60a97ec1611db724"}}}}}, 0x0) 16:17:54 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = gettid() r1 = getpid() rt_tgsigqueueinfo(r1, r0, 0x0, &(0x7f0000000340)) 16:17:54 executing program 6: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)={0x0, 0x0, 0x7a2}) 16:17:54 executing program 4: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000005, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) fgetxattr(r0, &(0x7f0000000000)=@known='com.apple.FinderInfo\x00', 0x0, 0x0) 16:17:54 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = gettid() r1 = getpid() rt_tgsigqueueinfo(r1, r0, 0x0, &(0x7f0000000340)) 16:17:54 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x16, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0x0, 0x4d, 0x0, '\x00', [{}, {0x800, 0x0, 0x80000000000}]}) stat(&(0x7f0000000280)='./file1\x00', &(0x7f00000004c0)) 16:17:54 executing program 0: signalfd4(0xffffffffffffffff, &(0x7f0000000100), 0x8, 0x0) sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) openat$nvram(0xffffffffffffff9c, &(0x7f00000012c0), 0x80, 0x0) 16:17:54 executing program 1: syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000026c0)={[{@size={'size', 0x3d, [0x67]}}], [{@seclabel}]}) [ 501.944676] program syz-executor.6 is using a deprecated SCSI ioctl, please convert it to SG_IO 16:17:54 executing program 0: signalfd4(0xffffffffffffffff, &(0x7f0000000100), 0x8, 0x0) sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) openat$nvram(0xffffffffffffff9c, &(0x7f00000012c0), 0x80, 0x0) 16:17:55 executing program 5: syz_emit_ethernet(0x46, &(0x7f0000001280)={@multicast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @source_quench={0x4, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @remote}, "60a97ec1611db724"}}}}}, 0x0) 16:17:55 executing program 0: signalfd4(0xffffffffffffffff, &(0x7f0000000100), 0x8, 0x0) sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) openat$nvram(0xffffffffffffff9c, &(0x7f00000012c0), 0x80, 0x0) 16:17:55 executing program 1: syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000026c0)={[{@size={'size', 0x3d, [0x67]}}], [{@seclabel}]}) 16:17:55 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x25, 0x0) 16:17:55 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f00000001c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000180)=0x40) mknodat$loop(r0, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) 16:17:55 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = gettid() r1 = getpid() rt_tgsigqueueinfo(r1, r0, 0x0, &(0x7f0000000340)) 16:17:55 executing program 4: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000005, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) fgetxattr(r0, &(0x7f0000000000)=@known='com.apple.FinderInfo\x00', 0x0, 0x0) 16:17:55 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x16, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0x0, 0x4d, 0x0, '\x00', [{}, {0x800, 0x0, 0x80000000000}]}) stat(&(0x7f0000000280)='./file1\x00', &(0x7f00000004c0)) 16:17:55 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f00000001c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000180)=0x40) mknodat$loop(r0, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) 16:17:55 executing program 5: syz_emit_ethernet(0x46, &(0x7f0000001280)={@multicast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @source_quench={0x4, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @remote}, "60a97ec1611db724"}}}}}, 0x0) 16:17:55 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x25, 0x0) 16:17:55 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f00000001c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000180)=0x40) mknodat$loop(r0, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) 16:17:55 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x25, 0x0) 16:17:55 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4, 0x0, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x200}, 0x1c) 16:17:55 executing program 0: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) accept4(r0, 0x0, 0x0, 0x0) 16:17:55 executing program 5: syz_emit_ethernet(0x46, &(0x7f0000001280)={@multicast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @source_quench={0x4, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @remote}, "60a97ec1611db724"}}}}}, 0x0) 16:17:55 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x25, 0x0) 16:17:55 executing program 1: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x0) 16:17:55 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="380100001a00010000000000000000000000000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000001000000000000000000000000000500006c000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000480003"], 0x138}}, 0x0) 16:17:55 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f00000001c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000180)=0x40) mknodat$loop(r0, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) 16:17:55 executing program 7: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0) r1 = dup(r0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000040)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, 0x0) 16:17:55 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4, 0x0, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x200}, 0x1c) 16:17:55 executing program 0: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) accept4(r0, 0x0, 0x0, 0x0) 16:17:55 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="380100001a00010000000000000000000000000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000001000000000000000000000000000500006c000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000480003"], 0x138}}, 0x0) 16:17:56 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4, 0x0, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x200}, 0x1c) 16:17:56 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0) syz_io_uring_submit(r1, 0x0, 0x0, 0x0) 16:17:56 executing program 1: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x0) 16:17:56 executing program 6: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x0) 16:17:56 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="380100001a00010000000000000000000000000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000001000000000000000000000000000500006c000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000480003"], 0x138}}, 0x0) 16:17:56 executing program 0: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) accept4(r0, 0x0, 0x0, 0x0) 16:17:56 executing program 7: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0) r1 = dup(r0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000040)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, 0x0) 16:17:56 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 16:17:56 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="380100001a00010000000000000000000000000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000001000000000000000000000000000500006c000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000480003"], 0x138}}, 0x0) 16:17:56 executing program 0: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) accept4(r0, 0x0, 0x0, 0x0) 16:17:56 executing program 1: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x0) 16:17:56 executing program 7: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0) r1 = dup(r0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000040)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, 0x0) 16:17:56 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4, 0x0, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x200}, 0x1c) 16:17:56 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0) syz_io_uring_submit(r1, 0x0, 0x0, 0x0) 16:17:56 executing program 6: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x0) 16:17:56 executing program 6: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x0) 16:17:56 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 16:17:56 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$sock_timeval(r0, 0x1, 0x29, 0x0, &(0x7f0000000200)) 16:17:56 executing program 1: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x0) 16:17:56 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x4, &(0x7f0000000280)=0x0) pipe(&(0x7f0000000700)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f0000000a80)="177a", 0x2}], 0x1, 0x0) io_submit(r0, 0x1, &(0x7f0000000a40)=[&(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) vmsplice(r2, &(0x7f00000005c0)=[{&(0x7f0000000380)="d2", 0x1}], 0x1, 0x0) 16:17:56 executing program 3: r0 = syz_io_uring_setup(0x1, &(0x7f00000004c0), &(0x7f0000a79000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000480), &(0x7f0000000080)) io_uring_enter(r0, 0x0, 0x0, 0xf, 0x0, 0x18) 16:17:56 executing program 7: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0) r1 = dup(r0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000040)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, 0x0) 16:17:56 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0) syz_io_uring_submit(r1, 0x0, 0x0, 0x0) 16:17:56 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$sock_timeval(r0, 0x1, 0x29, 0x0, &(0x7f0000000200)) 16:17:56 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 16:17:56 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0) syz_io_uring_submit(r1, 0x0, 0x0, 0x0) 16:17:57 executing program 7: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 16:17:57 executing program 3: r0 = syz_io_uring_setup(0x1, &(0x7f00000004c0), &(0x7f0000a79000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000480), &(0x7f0000000080)) io_uring_enter(r0, 0x0, 0x0, 0xf, 0x0, 0x18) 16:17:57 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="450efdffffff0000000007000000080000000000000008000300", @ANYRES32=r3, @ANYBLOB="05005300000000001400040074756e6c3000000000000000000000000400cc000800050008"], 0x4c}}, 0x0) 16:17:57 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x4, &(0x7f0000000280)=0x0) pipe(&(0x7f0000000700)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f0000000a80)="177a", 0x2}], 0x1, 0x0) io_submit(r0, 0x1, &(0x7f0000000a40)=[&(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) vmsplice(r2, &(0x7f00000005c0)=[{&(0x7f0000000380)="d2", 0x1}], 0x1, 0x0) 16:17:57 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x0) sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, 0x0, 0x0) io_setup(0x3ff, 0x0) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) syz_open_dev$ttys(0xc, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) 16:17:57 executing program 7: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 16:17:57 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 16:17:57 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$sock_timeval(r0, 0x1, 0x29, 0x0, &(0x7f0000000200)) 16:17:57 executing program 3: r0 = syz_io_uring_setup(0x1, &(0x7f00000004c0), &(0x7f0000a79000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000480), &(0x7f0000000080)) io_uring_enter(r0, 0x0, 0x0, 0xf, 0x0, 0x18) 16:17:57 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 16:17:57 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x0) sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, 0x0, 0x0) io_setup(0x3ff, 0x0) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) syz_open_dev$ttys(0xc, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) 16:17:57 executing program 5: add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) keyctl$setperm(0x5, r1, 0x0) 16:17:57 executing program 7: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 16:17:57 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x4, &(0x7f0000000280)=0x0) pipe(&(0x7f0000000700)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f0000000a80)="177a", 0x2}], 0x1, 0x0) io_submit(r0, 0x1, &(0x7f0000000a40)=[&(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) vmsplice(r2, &(0x7f00000005c0)=[{&(0x7f0000000380)="d2", 0x1}], 0x1, 0x0) 16:17:57 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="450efdffffff0000000007000000080000000000000008000300", @ANYRES32=r3, @ANYBLOB="05005300000000001400040074756e6c3000000000000000000000000400cc000800050008"], 0x4c}}, 0x0) [ 504.810063] audit: type=1400 audit(1734538677.685:10): avc: denied { write } for pid=20745 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 16:17:57 executing program 5: add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) keyctl$setperm(0x5, r1, 0x0) 16:17:57 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$sock_timeval(r0, 0x1, 0x29, 0x0, &(0x7f0000000200)) 16:17:57 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 16:17:57 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 16:17:57 executing program 3: r0 = syz_io_uring_setup(0x1, &(0x7f00000004c0), &(0x7f0000a79000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000480), &(0x7f0000000080)) io_uring_enter(r0, 0x0, 0x0, 0xf, 0x0, 0x18) 16:17:58 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 16:17:58 executing program 5: add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) keyctl$setperm(0x5, r1, 0x0) 16:17:58 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="450efdffffff0000000007000000080000000000000008000300", @ANYRES32=r3, @ANYBLOB="05005300000000001400040074756e6c3000000000000000000000000400cc000800050008"], 0x4c}}, 0x0) 16:17:58 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 16:17:58 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x0) sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, 0x0, 0x0) io_setup(0x3ff, 0x0) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) syz_open_dev$ttys(0xc, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) 16:17:58 executing program 4: add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) keyctl$setperm(0x5, r1, 0x0) 16:17:58 executing program 3: add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) keyctl$setperm(0x5, r1, 0x0) 16:17:58 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x4, &(0x7f0000000280)=0x0) pipe(&(0x7f0000000700)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f0000000a80)="177a", 0x2}], 0x1, 0x0) io_submit(r0, 0x1, &(0x7f0000000a40)=[&(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) vmsplice(r2, &(0x7f00000005c0)=[{&(0x7f0000000380)="d2", 0x1}], 0x1, 0x0) 16:17:58 executing program 5: add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) keyctl$setperm(0x5, r1, 0x0) 16:17:58 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 16:17:58 executing program 4: add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) keyctl$setperm(0x5, r1, 0x0) 16:17:58 executing program 3: add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) keyctl$setperm(0x5, r1, 0x0) 16:17:58 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 16:17:58 executing program 3: add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) keyctl$setperm(0x5, r1, 0x0) 16:17:58 executing program 4: add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) syz_mount_image$msdos(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000340)={0x0, "f82a5ba671a3f4c740888b6561168345af4ffce898405c352a052c55114faebe0f64244ace8e5c4aedd9efd7b54e780efef2209c1afa3281b68a274f4c838062"}, 0x48, 0xffffffffffffffff) keyctl$setperm(0x5, r1, 0x0) 16:17:58 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="450efdffffff0000000007000000080000000000000008000300", @ANYRES32=r3, @ANYBLOB="05005300000000001400040074756e6c3000000000000000000000000400cc000800050008"], 0x4c}}, 0x0) 16:17:58 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x0) sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, 0x0, 0x0) io_setup(0x3ff, 0x0) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) syz_open_dev$ttys(0xc, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) 16:17:59 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='oom_score\x00') pread64(r0, &(0x7f0000000480)=""/4083, 0xff3, 0x0) 16:17:59 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@remote, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@loopback, 0x0, 0x3c}, 0x0, @in=@empty}}, 0xe8) sendmmsg$inet6(r0, &(0x7f00000003c0)=[{{&(0x7f0000000000)={0xa, 0x4e26, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c, 0x0}}, {{&(0x7f0000000300)={0xa, 0x4e20, 0x0, @remote}, 0x1c, 0x0}}], 0x2, 0x0) 16:17:59 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={[{@mpol={'mpol', 0x3d, {'prefer', '=static', @val={0x3a, [0x30]}}}}]}) 16:17:59 executing program 5: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "c4371b", 0x0, 0x6, 0x0, @private0, @mcast2}}}}, 0x0) 16:17:59 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='oom_score\x00') pread64(r0, &(0x7f0000000480)=""/4083, 0xff3, 0x0) 16:17:59 executing program 4: r0 = socket$packet(0x11, 0x2, 0x300) shutdown(r0, 0x0) 16:17:59 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x0) sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, 0x0, 0x0) io_setup(0x3ff, 0x0) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) syz_open_dev$ttys(0xc, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) 16:17:59 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='oom_score\x00') pread64(r0, &(0x7f0000000480)=""/4083, 0xff3, 0x0) 16:17:59 executing program 5: syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "c4371b", 0x0, 0x6, 0x0, @private0, @mcast2}}}}, 0x0) 16:17:59 executing program 2: unshare(0x0) unshare(0x40000000) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[]) fcntl$notify(r0, 0x402, 0x8000003c) r1 = dup(r0) dup2(r1, r0) 16:17:59 executing program 6: r0 = fsopen(&(0x7f0000000080)='mqueue\x00', 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, 0xfffffffffffffffe, 0x0, 0x0) 16:17:59 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x0) sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, 0x0, 0x0) io_setup(0x3ff, 0x0) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) syz_open_dev$ttys(0xc, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1e}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x34}}, 0x0) VM DIAGNOSIS: 16:17:49 Registers: info registers vcpu 0 RAX=00000000000dc161 RBX=0000000000000000 RCX=ffffffff84a7ca77 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff814b2f4a RBP=dffffc0000000000 RSP=ffffffff85a07e10 R8 =0000000000000001 R9 =ffffed100d9c6c4a R10=ffff88806ce36253 R11=0000000000000000 R12=ffffffff863fc890 R13=1ffffffff0b40fc7 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff84a7da1e RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000558e2ff4f618 CR3=0000000014d1a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000416a6d0f00000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000005d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff82840465 RDI=ffffffff886890a0 RBP=ffffffff88689060 RSP=ffff88806cf08f18 R8 =0000000000000000 R9 =ffffed1001d4c046 R10=000000000000005d R11=0000000000000001 R12=000000000000005d R13=ffffffff88689060 R14=0000000000000010 R15=ffffffff82840450 RIP=ffffffff828404bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f78077b5700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000000000000 CR3=000000003a11c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000