Warning: Permanently added '[localhost]:39455' (ECDSA) to the list of known hosts.
2025/11/15 06:11:38 fuzzer started
2025/11/15 06:11:38 dialing manager at localhost:37161
syzkaller login: [   50.888901] cgroup: Unknown subsys name 'net'
[   50.947030] cgroup: Unknown subsys name 'cpuset'
[   50.968612] cgroup: Unknown subsys name 'rlimit'
2025/11/15 06:11:49 syscalls: 2214
2025/11/15 06:11:49 code coverage: enabled
2025/11/15 06:11:49 comparison tracing: enabled
2025/11/15 06:11:49 extra coverage: enabled
2025/11/15 06:11:49 setuid sandbox: enabled
2025/11/15 06:11:49 namespace sandbox: enabled
2025/11/15 06:11:49 Android sandbox: enabled
2025/11/15 06:11:49 fault injection: enabled
2025/11/15 06:11:49 leak checking: enabled
2025/11/15 06:11:49 net packet injection: enabled
2025/11/15 06:11:49 net device setup: enabled
2025/11/15 06:11:49 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/11/15 06:11:49 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/11/15 06:11:49 USB emulation: enabled
2025/11/15 06:11:49 hci packet injection: enabled
2025/11/15 06:11:49 wifi device emulation: enabled
2025/11/15 06:11:49 802.15.4 emulation: enabled
2025/11/15 06:11:49 fetching corpus: 50, signal 24553/26363 (executing program)
2025/11/15 06:11:49 fetching corpus: 100, signal 36766/40190 (executing program)
2025/11/15 06:11:49 fetching corpus: 150, signal 46199/51135 (executing program)
2025/11/15 06:11:49 fetching corpus: 200, signal 56178/62447 (executing program)
2025/11/15 06:11:49 fetching corpus: 250, signal 60941/68605 (executing program)
2025/11/15 06:11:49 fetching corpus: 300, signal 65072/74103 (executing program)
2025/11/15 06:11:49 fetching corpus: 350, signal 69903/80201 (executing program)
2025/11/15 06:11:49 fetching corpus: 400, signal 73292/84846 (executing program)
2025/11/15 06:11:50 fetching corpus: 450, signal 76815/89535 (executing program)
2025/11/15 06:11:50 fetching corpus: 500, signal 79571/93537 (executing program)
2025/11/15 06:11:50 fetching corpus: 550, signal 83007/98071 (executing program)
2025/11/15 06:11:50 fetching corpus: 600, signal 86001/102132 (executing program)
2025/11/15 06:11:50 fetching corpus: 650, signal 89191/106354 (executing program)
2025/11/15 06:11:50 fetching corpus: 700, signal 91656/109887 (executing program)
2025/11/15 06:11:50 fetching corpus: 750, signal 93116/112499 (executing program)
2025/11/15 06:11:50 fetching corpus: 800, signal 94965/115416 (executing program)
2025/11/15 06:11:50 fetching corpus: 850, signal 97034/118457 (executing program)
2025/11/15 06:11:51 fetching corpus: 900, signal 99313/121711 (executing program)
2025/11/15 06:11:51 fetching corpus: 950, signal 101252/124643 (executing program)
2025/11/15 06:11:51 fetching corpus: 1000, signal 104930/128958 (executing program)
2025/11/15 06:11:51 fetching corpus: 1050, signal 107448/132276 (executing program)
2025/11/15 06:11:51 fetching corpus: 1100, signal 109884/135443 (executing program)
2025/11/15 06:11:51 fetching corpus: 1150, signal 111288/137777 (executing program)
2025/11/15 06:11:51 fetching corpus: 1200, signal 112938/140265 (executing program)
2025/11/15 06:11:51 fetching corpus: 1250, signal 114720/142877 (executing program)
2025/11/15 06:11:51 fetching corpus: 1300, signal 115596/144707 (executing program)
2025/11/15 06:11:52 fetching corpus: 1350, signal 116843/146825 (executing program)
2025/11/15 06:11:52 fetching corpus: 1400, signal 118135/148949 (executing program)
2025/11/15 06:11:52 fetching corpus: 1450, signal 119072/150752 (executing program)
2025/11/15 06:11:52 fetching corpus: 1500, signal 120153/152689 (executing program)
2025/11/15 06:11:52 fetching corpus: 1550, signal 121720/155015 (executing program)
2025/11/15 06:11:52 fetching corpus: 1600, signal 123142/157108 (executing program)
2025/11/15 06:11:52 fetching corpus: 1650, signal 124336/159021 (executing program)
2025/11/15 06:11:52 fetching corpus: 1700, signal 126115/161435 (executing program)
2025/11/15 06:11:52 fetching corpus: 1750, signal 126995/163139 (executing program)
2025/11/15 06:11:52 fetching corpus: 1800, signal 127893/164809 (executing program)
2025/11/15 06:11:52 fetching corpus: 1850, signal 129494/166997 (executing program)
2025/11/15 06:11:53 fetching corpus: 1900, signal 130694/168838 (executing program)
2025/11/15 06:11:53 fetching corpus: 1950, signal 132092/170797 (executing program)
2025/11/15 06:11:53 fetching corpus: 2000, signal 133112/172525 (executing program)
2025/11/15 06:11:53 fetching corpus: 2050, signal 133790/173992 (executing program)
2025/11/15 06:11:53 fetching corpus: 2100, signal 134653/175572 (executing program)
2025/11/15 06:11:53 fetching corpus: 2150, signal 135442/177103 (executing program)
2025/11/15 06:11:53 fetching corpus: 2200, signal 136413/178729 (executing program)
2025/11/15 06:11:53 fetching corpus: 2250, signal 137548/180427 (executing program)
2025/11/15 06:11:53 fetching corpus: 2300, signal 138836/182254 (executing program)
2025/11/15 06:11:53 fetching corpus: 2350, signal 140237/184163 (executing program)
2025/11/15 06:11:53 fetching corpus: 2400, signal 141044/185585 (executing program)
2025/11/15 06:11:54 fetching corpus: 2450, signal 141634/186851 (executing program)
2025/11/15 06:11:54 fetching corpus: 2500, signal 142446/188285 (executing program)
2025/11/15 06:11:54 fetching corpus: 2550, signal 144896/190704 (executing program)
2025/11/15 06:11:54 fetching corpus: 2600, signal 145547/191986 (executing program)
2025/11/15 06:11:54 fetching corpus: 2650, signal 146303/193326 (executing program)
2025/11/15 06:11:54 fetching corpus: 2700, signal 147864/195164 (executing program)
2025/11/15 06:11:54 fetching corpus: 2750, signal 148835/196597 (executing program)
2025/11/15 06:11:54 fetching corpus: 2800, signal 149658/197981 (executing program)
2025/11/15 06:11:54 fetching corpus: 2850, signal 150400/199279 (executing program)
2025/11/15 06:11:54 fetching corpus: 2900, signal 151130/200546 (executing program)
2025/11/15 06:11:55 fetching corpus: 2950, signal 152167/201962 (executing program)
2025/11/15 06:11:55 fetching corpus: 3000, signal 152683/203153 (executing program)
2025/11/15 06:11:55 fetching corpus: 3050, signal 153360/204355 (executing program)
2025/11/15 06:11:55 fetching corpus: 3100, signal 154589/205829 (executing program)
2025/11/15 06:11:55 fetching corpus: 3150, signal 155247/207044 (executing program)
2025/11/15 06:11:55 fetching corpus: 3200, signal 156245/208384 (executing program)
2025/11/15 06:11:55 fetching corpus: 3250, signal 156973/209588 (executing program)
2025/11/15 06:11:55 fetching corpus: 3300, signal 157878/210887 (executing program)
2025/11/15 06:11:55 fetching corpus: 3350, signal 158451/211993 (executing program)
2025/11/15 06:11:55 fetching corpus: 3400, signal 158928/212998 (executing program)
2025/11/15 06:11:56 fetching corpus: 3450, signal 159626/214177 (executing program)
2025/11/15 06:11:56 fetching corpus: 3500, signal 160318/215254 (executing program)
2025/11/15 06:11:56 fetching corpus: 3550, signal 160869/216320 (executing program)
2025/11/15 06:11:56 fetching corpus: 3600, signal 161494/217394 (executing program)
2025/11/15 06:11:56 fetching corpus: 3650, signal 162116/218437 (executing program)
2025/11/15 06:11:56 fetching corpus: 3700, signal 162837/219467 (executing program)
2025/11/15 06:11:56 fetching corpus: 3750, signal 163461/220484 (executing program)
2025/11/15 06:11:56 fetching corpus: 3800, signal 164040/221520 (executing program)
2025/11/15 06:11:56 fetching corpus: 3850, signal 165190/222709 (executing program)
2025/11/15 06:11:57 fetching corpus: 3900, signal 165704/223670 (executing program)
2025/11/15 06:11:57 fetching corpus: 3950, signal 166326/224683 (executing program)
2025/11/15 06:11:57 fetching corpus: 4000, signal 166937/225646 (executing program)
2025/11/15 06:11:57 fetching corpus: 4050, signal 167376/226525 (executing program)
2025/11/15 06:11:57 fetching corpus: 4100, signal 168016/227533 (executing program)
2025/11/15 06:11:57 fetching corpus: 4150, signal 168397/228424 (executing program)
2025/11/15 06:11:57 fetching corpus: 4200, signal 168953/229334 (executing program)
2025/11/15 06:11:57 fetching corpus: 4250, signal 169471/230222 (executing program)
2025/11/15 06:11:57 fetching corpus: 4300, signal 170004/231155 (executing program)
2025/11/15 06:11:57 fetching corpus: 4350, signal 170446/232019 (executing program)
2025/11/15 06:11:57 fetching corpus: 4400, signal 170866/232861 (executing program)
2025/11/15 06:11:58 fetching corpus: 4450, signal 171502/233782 (executing program)
2025/11/15 06:11:58 fetching corpus: 4500, signal 171875/234579 (executing program)
2025/11/15 06:11:58 fetching corpus: 4550, signal 172154/235397 (executing program)
2025/11/15 06:11:58 fetching corpus: 4600, signal 172573/236213 (executing program)
2025/11/15 06:11:58 fetching corpus: 4650, signal 172930/237026 (executing program)
2025/11/15 06:11:58 fetching corpus: 4700, signal 173340/237848 (executing program)
2025/11/15 06:11:58 fetching corpus: 4750, signal 173694/238606 (executing program)
2025/11/15 06:11:58 fetching corpus: 4800, signal 174042/239381 (executing program)
2025/11/15 06:11:58 fetching corpus: 4850, signal 174806/240249 (executing program)
2025/11/15 06:11:58 fetching corpus: 4900, signal 175136/240954 (executing program)
2025/11/15 06:11:59 fetching corpus: 4950, signal 175652/241776 (executing program)
2025/11/15 06:11:59 fetching corpus: 5000, signal 176342/242617 (executing program)
2025/11/15 06:11:59 fetching corpus: 5050, signal 176755/243400 (executing program)
2025/11/15 06:11:59 fetching corpus: 5100, signal 177529/244278 (executing program)
2025/11/15 06:11:59 fetching corpus: 5150, signal 178028/245030 (executing program)
2025/11/15 06:11:59 fetching corpus: 5200, signal 178446/245796 (executing program)
2025/11/15 06:11:59 fetching corpus: 5250, signal 178960/246573 (executing program)
2025/11/15 06:11:59 fetching corpus: 5300, signal 179425/247324 (executing program)
2025/11/15 06:11:59 fetching corpus: 5350, signal 179969/248099 (executing program)
2025/11/15 06:11:59 fetching corpus: 5400, signal 180536/248838 (executing program)
2025/11/15 06:12:00 fetching corpus: 5450, signal 181014/249574 (executing program)
2025/11/15 06:12:00 fetching corpus: 5500, signal 181413/250247 (executing program)
2025/11/15 06:12:00 fetching corpus: 5550, signal 181802/250994 (executing program)
2025/11/15 06:12:00 fetching corpus: 5600, signal 182319/251667 (executing program)
2025/11/15 06:12:00 fetching corpus: 5650, signal 182611/252316 (executing program)
2025/11/15 06:12:00 fetching corpus: 5700, signal 182895/252930 (executing program)
2025/11/15 06:12:00 fetching corpus: 5750, signal 183273/253628 (executing program)
2025/11/15 06:12:00 fetching corpus: 5800, signal 183628/254292 (executing program)
2025/11/15 06:12:00 fetching corpus: 5850, signal 184139/254959 (executing program)
2025/11/15 06:12:01 fetching corpus: 5900, signal 184593/255648 (executing program)
2025/11/15 06:12:01 fetching corpus: 5950, signal 185077/256313 (executing program)
2025/11/15 06:12:01 fetching corpus: 6000, signal 185450/256943 (executing program)
2025/11/15 06:12:01 fetching corpus: 6050, signal 185834/257558 (executing program)
2025/11/15 06:12:01 fetching corpus: 6100, signal 186224/258198 (executing program)
2025/11/15 06:12:01 fetching corpus: 6150, signal 186444/258834 (executing program)
2025/11/15 06:12:01 fetching corpus: 6200, signal 186782/259426 (executing program)
2025/11/15 06:12:01 fetching corpus: 6250, signal 187361/260045 (executing program)
2025/11/15 06:12:01 fetching corpus: 6300, signal 187733/260655 (executing program)
2025/11/15 06:12:01 fetching corpus: 6350, signal 188327/261282 (executing program)
2025/11/15 06:12:02 fetching corpus: 6400, signal 188752/261870 (executing program)
2025/11/15 06:12:02 fetching corpus: 6450, signal 189578/262444 (executing program)
2025/11/15 06:12:02 fetching corpus: 6500, signal 190108/262983 (executing program)
2025/11/15 06:12:02 fetching corpus: 6550, signal 190535/263514 (executing program)
2025/11/15 06:12:02 fetching corpus: 6600, signal 190892/264050 (executing program)
2025/11/15 06:12:02 fetching corpus: 6650, signal 191280/264050 (executing program)
2025/11/15 06:12:02 fetching corpus: 6700, signal 191611/264050 (executing program)
2025/11/15 06:12:02 fetching corpus: 6750, signal 192050/264050 (executing program)
2025/11/15 06:12:02 fetching corpus: 6800, signal 192310/264050 (executing program)
2025/11/15 06:12:03 fetching corpus: 6850, signal 192617/264050 (executing program)
2025/11/15 06:12:03 fetching corpus: 6900, signal 192919/264050 (executing program)
2025/11/15 06:12:03 fetching corpus: 6950, signal 193346/264050 (executing program)
2025/11/15 06:12:03 fetching corpus: 7000, signal 193613/264052 (executing program)
2025/11/15 06:12:03 fetching corpus: 7050, signal 194025/264053 (executing program)
2025/11/15 06:12:03 fetching corpus: 7100, signal 194443/264053 (executing program)
2025/11/15 06:12:03 fetching corpus: 7150, signal 194928/264056 (executing program)
2025/11/15 06:12:03 fetching corpus: 7200, signal 195229/264056 (executing program)
2025/11/15 06:12:03 fetching corpus: 7250, signal 195746/264057 (executing program)
2025/11/15 06:12:03 fetching corpus: 7300, signal 196128/264057 (executing program)
2025/11/15 06:12:03 fetching corpus: 7350, signal 196374/264057 (executing program)
2025/11/15 06:12:03 fetching corpus: 7400, signal 196626/264057 (executing program)
2025/11/15 06:12:04 fetching corpus: 7450, signal 196804/264057 (executing program)
2025/11/15 06:12:04 fetching corpus: 7500, signal 197137/264057 (executing program)
2025/11/15 06:12:04 fetching corpus: 7550, signal 197433/264057 (executing program)
2025/11/15 06:12:04 fetching corpus: 7600, signal 197790/264057 (executing program)
2025/11/15 06:12:04 fetching corpus: 7650, signal 198310/264057 (executing program)
2025/11/15 06:12:04 fetching corpus: 7700, signal 198636/264057 (executing program)
2025/11/15 06:12:04 fetching corpus: 7750, signal 198899/264057 (executing program)
2025/11/15 06:12:04 fetching corpus: 7800, signal 199223/264059 (executing program)
2025/11/15 06:12:04 fetching corpus: 7850, signal 199496/264059 (executing program)
2025/11/15 06:12:04 fetching corpus: 7900, signal 199727/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 7950, signal 200114/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 8000, signal 200505/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 8050, signal 200855/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 8100, signal 201212/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 8150, signal 201555/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 8200, signal 201895/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 8250, signal 202173/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 8300, signal 202477/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 8350, signal 202760/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 8400, signal 204126/264059 (executing program)
2025/11/15 06:12:05 fetching corpus: 8450, signal 204369/264059 (executing program)
2025/11/15 06:12:06 fetching corpus: 8500, signal 204598/264062 (executing program)
2025/11/15 06:12:06 fetching corpus: 8550, signal 204914/264062 (executing program)
2025/11/15 06:12:06 fetching corpus: 8600, signal 205151/264062 (executing program)
2025/11/15 06:12:06 fetching corpus: 8650, signal 205411/264062 (executing program)
2025/11/15 06:12:06 fetching corpus: 8700, signal 205663/264062 (executing program)
2025/11/15 06:12:06 fetching corpus: 8750, signal 205943/264062 (executing program)
2025/11/15 06:12:06 fetching corpus: 8800, signal 206235/264062 (executing program)
2025/11/15 06:12:06 fetching corpus: 8850, signal 206725/264062 (executing program)
2025/11/15 06:12:06 fetching corpus: 8900, signal 207043/264062 (executing program)
2025/11/15 06:12:06 fetching corpus: 8950, signal 207299/264062 (executing program)
2025/11/15 06:12:07 fetching corpus: 9000, signal 207558/264062 (executing program)
2025/11/15 06:12:07 fetching corpus: 9050, signal 207837/264065 (executing program)
2025/11/15 06:12:07 fetching corpus: 9100, signal 208108/264066 (executing program)
2025/11/15 06:12:07 fetching corpus: 9150, signal 208359/264066 (executing program)
2025/11/15 06:12:07 fetching corpus: 9200, signal 208711/264066 (executing program)
2025/11/15 06:12:07 fetching corpus: 9250, signal 208938/264066 (executing program)
2025/11/15 06:12:07 fetching corpus: 9300, signal 209226/264066 (executing program)
2025/11/15 06:12:07 fetching corpus: 9350, signal 209557/264066 (executing program)
2025/11/15 06:12:07 fetching corpus: 9400, signal 209779/264066 (executing program)
2025/11/15 06:12:07 fetching corpus: 9450, signal 210145/264066 (executing program)
2025/11/15 06:12:08 fetching corpus: 9500, signal 210383/264066 (executing program)
2025/11/15 06:12:08 fetching corpus: 9550, signal 210932/264081 (executing program)
2025/11/15 06:12:08 fetching corpus: 9600, signal 211212/264081 (executing program)
2025/11/15 06:12:08 fetching corpus: 9650, signal 211470/264081 (executing program)
2025/11/15 06:12:08 fetching corpus: 9700, signal 211753/264081 (executing program)
2025/11/15 06:12:08 fetching corpus: 9750, signal 211941/264083 (executing program)
2025/11/15 06:12:08 fetching corpus: 9800, signal 212268/264083 (executing program)
2025/11/15 06:12:08 fetching corpus: 9850, signal 212524/264083 (executing program)
2025/11/15 06:12:08 fetching corpus: 9900, signal 212830/264083 (executing program)
2025/11/15 06:12:08 fetching corpus: 9950, signal 213031/264083 (executing program)
2025/11/15 06:12:08 fetching corpus: 10000, signal 213276/264083 (executing program)
2025/11/15 06:12:09 fetching corpus: 10050, signal 213509/264083 (executing program)
2025/11/15 06:12:09 fetching corpus: 10100, signal 213726/264083 (executing program)
2025/11/15 06:12:09 fetching corpus: 10150, signal 214012/264083 (executing program)
2025/11/15 06:12:09 fetching corpus: 10200, signal 214489/264083 (executing program)
2025/11/15 06:12:09 fetching corpus: 10250, signal 214725/264083 (executing program)
2025/11/15 06:12:09 fetching corpus: 10300, signal 215061/264083 (executing program)
2025/11/15 06:12:09 fetching corpus: 10350, signal 215277/264083 (executing program)
2025/11/15 06:12:09 fetching corpus: 10400, signal 215535/264083 (executing program)
2025/11/15 06:12:09 fetching corpus: 10450, signal 215813/264084 (executing program)
2025/11/15 06:12:09 fetching corpus: 10500, signal 216074/264084 (executing program)
2025/11/15 06:12:09 fetching corpus: 10550, signal 216339/264084 (executing program)
2025/11/15 06:12:10 fetching corpus: 10600, signal 216526/264084 (executing program)
2025/11/15 06:12:10 fetching corpus: 10650, signal 216752/264084 (executing program)
2025/11/15 06:12:10 fetching corpus: 10700, signal 216941/264084 (executing program)
2025/11/15 06:12:10 fetching corpus: 10750, signal 217165/264084 (executing program)
2025/11/15 06:12:10 fetching corpus: 10800, signal 217421/264084 (executing program)
2025/11/15 06:12:10 fetching corpus: 10850, signal 217655/264084 (executing program)
2025/11/15 06:12:10 fetching corpus: 10900, signal 217893/264084 (executing program)
2025/11/15 06:12:10 fetching corpus: 10950, signal 218205/264084 (executing program)
2025/11/15 06:12:10 fetching corpus: 11000, signal 218422/264086 (executing program)
2025/11/15 06:12:10 fetching corpus: 11050, signal 218651/264086 (executing program)
2025/11/15 06:12:11 fetching corpus: 11100, signal 218879/264086 (executing program)
2025/11/15 06:12:11 fetching corpus: 11150, signal 219827/264086 (executing program)
2025/11/15 06:12:11 fetching corpus: 11200, signal 220123/264086 (executing program)
2025/11/15 06:12:11 fetching corpus: 11250, signal 220376/264086 (executing program)
2025/11/15 06:12:11 fetching corpus: 11300, signal 220644/264086 (executing program)
2025/11/15 06:12:11 fetching corpus: 11350, signal 220839/264086 (executing program)
2025/11/15 06:12:11 fetching corpus: 11400, signal 221103/264086 (executing program)
2025/11/15 06:12:11 fetching corpus: 11450, signal 221220/264086 (executing program)
2025/11/15 06:12:11 fetching corpus: 11500, signal 221369/264086 (executing program)
2025/11/15 06:12:11 fetching corpus: 11550, signal 221599/264089 (executing program)
2025/11/15 06:12:12 fetching corpus: 11600, signal 222160/264089 (executing program)
2025/11/15 06:12:12 fetching corpus: 11650, signal 222363/264089 (executing program)
2025/11/15 06:12:12 fetching corpus: 11700, signal 222502/264089 (executing program)
2025/11/15 06:12:12 fetching corpus: 11750, signal 222781/264089 (executing program)
2025/11/15 06:12:12 fetching corpus: 11800, signal 223005/264089 (executing program)
2025/11/15 06:12:12 fetching corpus: 11850, signal 223207/264089 (executing program)
2025/11/15 06:12:12 fetching corpus: 11900, signal 223450/264089 (executing program)
2025/11/15 06:12:12 fetching corpus: 11950, signal 223599/264089 (executing program)
2025/11/15 06:12:12 fetching corpus: 12000, signal 223830/264089 (executing program)
2025/11/15 06:12:12 fetching corpus: 12050, signal 223999/264089 (executing program)
2025/11/15 06:12:13 fetching corpus: 12100, signal 224244/264089 (executing program)
2025/11/15 06:12:13 fetching corpus: 12150, signal 224885/264089 (executing program)
2025/11/15 06:12:13 fetching corpus: 12200, signal 225103/264090 (executing program)
2025/11/15 06:12:13 fetching corpus: 12250, signal 225397/264090 (executing program)
2025/11/15 06:12:13 fetching corpus: 12300, signal 225662/264090 (executing program)
2025/11/15 06:12:13 fetching corpus: 12350, signal 225851/264090 (executing program)
2025/11/15 06:12:13 fetching corpus: 12400, signal 226068/264090 (executing program)
2025/11/15 06:12:13 fetching corpus: 12450, signal 226285/264090 (executing program)
2025/11/15 06:12:13 fetching corpus: 12500, signal 226468/264090 (executing program)
2025/11/15 06:12:13 fetching corpus: 12550, signal 226798/264090 (executing program)
2025/11/15 06:12:14 fetching corpus: 12600, signal 227030/264090 (executing program)
2025/11/15 06:12:14 fetching corpus: 12650, signal 227224/264112 (executing program)
2025/11/15 06:12:14 fetching corpus: 12700, signal 227562/264112 (executing program)
2025/11/15 06:12:14 fetching corpus: 12750, signal 227767/264112 (executing program)
2025/11/15 06:12:14 fetching corpus: 12800, signal 227962/264112 (executing program)
2025/11/15 06:12:14 fetching corpus: 12850, signal 228222/264112 (executing program)
2025/11/15 06:12:14 fetching corpus: 12900, signal 228388/264112 (executing program)
2025/11/15 06:12:14 fetching corpus: 12950, signal 228527/264112 (executing program)
2025/11/15 06:12:14 fetching corpus: 13000, signal 228711/264112 (executing program)
2025/11/15 06:12:14 fetching corpus: 13050, signal 228866/264112 (executing program)
2025/11/15 06:12:14 fetching corpus: 13100, signal 229053/264112 (executing program)
2025/11/15 06:12:15 fetching corpus: 13150, signal 229258/264112 (executing program)
2025/11/15 06:12:15 fetching corpus: 13200, signal 229442/264112 (executing program)
2025/11/15 06:12:15 fetching corpus: 13250, signal 229574/264112 (executing program)
2025/11/15 06:12:15 fetching corpus: 13300, signal 229770/264112 (executing program)
2025/11/15 06:12:15 fetching corpus: 13350, signal 229931/264119 (executing program)
2025/11/15 06:12:15 fetching corpus: 13400, signal 230074/264119 (executing program)
2025/11/15 06:12:15 fetching corpus: 13450, signal 230245/264120 (executing program)
2025/11/15 06:12:15 fetching corpus: 13500, signal 230455/264120 (executing program)
2025/11/15 06:12:15 fetching corpus: 13550, signal 230611/264120 (executing program)
2025/11/15 06:12:15 fetching corpus: 13600, signal 230771/264120 (executing program)
2025/11/15 06:12:15 fetching corpus: 13650, signal 230922/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 13700, signal 231093/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 13750, signal 231245/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 13800, signal 231423/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 13850, signal 231647/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 13900, signal 231902/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 13950, signal 232049/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 14000, signal 232278/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 14050, signal 232477/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 14100, signal 232674/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 14150, signal 232912/264120 (executing program)
2025/11/15 06:12:16 fetching corpus: 14200, signal 233101/264120 (executing program)
2025/11/15 06:12:17 fetching corpus: 14250, signal 233298/264120 (executing program)
2025/11/15 06:12:17 fetching corpus: 14300, signal 233476/264120 (executing program)
2025/11/15 06:12:17 fetching corpus: 14350, signal 233632/264121 (executing program)
2025/11/15 06:12:17 fetching corpus: 14400, signal 233800/264121 (executing program)
2025/11/15 06:12:17 fetching corpus: 14450, signal 233928/264121 (executing program)
2025/11/15 06:12:17 fetching corpus: 14500, signal 234084/264121 (executing program)
2025/11/15 06:12:17 fetching corpus: 14550, signal 234304/264121 (executing program)
2025/11/15 06:12:17 fetching corpus: 14600, signal 234630/264121 (executing program)
2025/11/15 06:12:17 fetching corpus: 14650, signal 234866/264121 (executing program)
2025/11/15 06:12:17 fetching corpus: 14700, signal 235057/264121 (executing program)
2025/11/15 06:12:17 fetching corpus: 14750, signal 235241/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 14800, signal 235402/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 14850, signal 235599/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 14900, signal 235787/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 14950, signal 235913/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 15000, signal 236060/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 15050, signal 236249/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 15100, signal 236442/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 15150, signal 236807/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 15200, signal 236988/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 15250, signal 237157/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 15300, signal 237283/264121 (executing program)
2025/11/15 06:12:18 fetching corpus: 15350, signal 237424/264121 (executing program)
2025/11/15 06:12:19 fetching corpus: 15400, signal 237633/264121 (executing program)
2025/11/15 06:12:19 fetching corpus: 15450, signal 237836/264121 (executing program)
2025/11/15 06:12:19 fetching corpus: 15500, signal 238008/264121 (executing program)
2025/11/15 06:12:19 fetching corpus: 15550, signal 238283/264121 (executing program)
2025/11/15 06:12:19 fetching corpus: 15600, signal 238527/264121 (executing program)
2025/11/15 06:12:19 fetching corpus: 15650, signal 238698/264121 (executing program)
2025/11/15 06:12:19 fetching corpus: 15700, signal 238875/264121 (executing program)
2025/11/15 06:12:19 fetching corpus: 15702, signal 238882/264121 (executing program)
2025/11/15 06:12:19 fetching corpus: 15702, signal 238882/264121 (executing program)
2025/11/15 06:12:21 starting 8 fuzzer processes
06:12:21 executing program 0:
r0 = open(&(0x7f0000000000)='./file0\x00', 0x82, 0x48)
getpeername$inet(r0, &(0x7f0000000040)={0x2, 0x0, @dev}, &(0x7f0000000080)=0x10)
r1 = openat(r0, &(0x7f00000000c0)='./file0/file0\x00', 0x2f8200, 0x19)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @aes128, 0x3, @auto="5bb897db2aca3406"})
renameat2(r1, &(0x7f0000000140)='./file0/file0\x00', r1, &(0x7f0000000180)='./file0\x00', 0x3)
r2 = open$dir(&(0x7f00000001c0)='./file0\x00', 0xa01, 0x8)
openat(r2, &(0x7f0000000200)='./file1\x00', 0x440800, 0x2)
fsetxattr(r1, &(0x7f0000000240)=@random={'btrfs.', '\'\x00'}, &(0x7f0000000280)='\x00', 0x1, 0x1)
r3 = open$dir(&(0x7f00000002c0)='./file2\x00', 0x2800, 0x1c4)
r4 = openat(r3, &(0x7f0000000300)='./file0/file0\x00', 0x400000, 0x0)
setxattr$security_capability(&(0x7f0000000340)='./file0/file0\x00', &(0x7f0000000380), &(0x7f00000003c0)=@v2={0x2000000, [{0x7, 0x7fff}, {0x10000, 0x3}]}, 0x14, 0x2)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r4, 0xc0a85352, &(0x7f0000000400)={{0x3, 0x1}, 'port1\x00', 0x40, 0x801, 0x1, 0x5, 0x3ff, 0xffffff81, 0xe105, 0x0, 0x6, 0x9})
r5 = memfd_secret(0x80000)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r4, 0x4, &(0x7f00000004c0)='security.capability\x00', &(0x7f0000000500)='./file2\x00', r5)
unlink(&(0x7f0000000540)='./file1\x00')
write$sndseq(r4, &(0x7f0000000580)=[{0x1, 0x80, 0x9, 0xd, @time={0x7, 0x80000000}, {0x4, 0x2}, {0xe0, 0x3}, @result={0x1, 0x1}}, {0x5, 0xff, 0x4, 0x91, @time={0x5, 0x1ff}, {0x1, 0x2}, {0x7}, @time=@tick=0x6}], 0x38)
r6 = syz_open_dev$loop(&(0x7f00000005c0), 0xbc2, 0x80)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r4, 0xc018937e, &(0x7f0000000600)={{0x1, 0x1, 0x18, r6, @out_args}, './file0\x00'})
setxattr$trusted_overlay_opaque(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680), &(0x7f00000006c0), 0x2, 0x2)
sendfile(r0, r4, 0x0, 0x7fffffff)

06:12:21 executing program 2:
write$P9_RLINK(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x47, 0x2}, 0x7)
write$P9_RLERROR(0xffffffffffffffff, &(0x7f0000000040)={0xb, 0x7, 0x2, {0x2, '#.'}}, 0xb)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x2a0, 0x0)
fcntl$setpipe(r0, 0x407, 0x8001)
sendmsg$TIPC_NL_NET_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x34, 0x0, 0x800, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x20, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x318}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1000}, @TIPC_NLA_CON_NODE={0x8}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x4008000)
r1 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x98, 0x8000)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000200)=0x9)
sendmsg$NL80211_CMD_FLUSH_PMKSA(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x400500)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$BTRFS_IOC_RM_DEV(r2, 0x5000940b, &(0x7f0000000380)={{r3}, "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"})
recvmsg$unix(r3, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000001380), 0x0, &(0x7f00000013c0)=[@rights={{0x18, 0x1, 0x1, [<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}], 0x48}, 0x40)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001480)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
ioctl$BTRFS_IOC_RESIZE(r5, 0x50009403, &(0x7f00000014c0)={{r6}, {@void, @max}})
write$P9_RMKDIR(r1, &(0x7f0000001500)={0x14, 0x49, 0x2, {0x0, 0x1, 0x1}}, 0x14)
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000001540))
ioctl$BTRFS_IOC_QGROUP_LIMIT(r6, 0x8030942b, &(0x7f0000001580)={0x69, {0x2, 0xffffffffffff0a90, 0x6, 0x6, 0xfff}})
r7 = fork()
perf_event_open(&(0x7f00000015c0)={0x5, 0x80, 0x9, 0x20, 0x2, 0x8, 0x0, 0x3ff, 0x8000, 0xb, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x4, 0x1, @perf_config_ext={0x3, 0x40}, 0x8000, 0x10001, 0x5, 0x7, 0x2, 0x6, 0x8000, 0x0, 0x8, 0x0, 0x9}, r7, 0x10, 0xffffffffffffffff, 0x2)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r4, 0xc058534f, &(0x7f0000001640)={{0x1, 0x7}, 0x1, 0x9, 0x8, {0xbd, 0x9}, 0x7f, 0x3})

06:12:22 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.avg_queue_size\x00', 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x9, @remote, 0x1f}, 0x1c)
recvmsg$unix(r0, &(0x7f0000000500)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000100)=""/110, 0x6e}, {&(0x7f0000000180)=""/73, 0x49}, {&(0x7f0000000200)=""/32, 0x20}, {&(0x7f0000000240)=""/114, 0x72}, {&(0x7f00000002c0)=""/5, 0x5}, {&(0x7f0000000300)=""/201, 0xc9}], 0x6, &(0x7f0000000480)=[@rights={{0x24, 0x1, 0x1, [<r1=>0xffffffffffffffff, 0xffffffffffffffff, <r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, <r4=>0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [<r5=>0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff]}}], 0x60}, 0x40002000)
connect$inet6(r2, &(0x7f0000000540)={0xa, 0x4e20, 0x241, @mcast2, 0x837}, 0x1c)
r7 = openat$incfs(r0, &(0x7f0000000580)='.pending_reads\x00', 0x208400, 0x62)
r8 = openat$cgroup_ro(r7, &(0x7f00000005c0)='blkio.bfq.io_service_time\x00', 0x0, 0x0)
preadv2(r8, &(0x7f00000006c0)=[{&(0x7f0000000600)=""/186, 0xba}], 0x1, 0x1000, 0x8, 0x8)
ioctl$BTRFS_IOC_START_SYNC(r4, 0x80089418, &(0x7f0000000700))
ioctl$FIBMAP(r6, 0x1, &(0x7f0000000740)=0x80)
write$P9_RRENAMEAT(r7, &(0x7f0000000780)={0x7, 0x4b, 0x2}, 0x7)
r9 = dup(r3)
connect$inet6(r9, &(0x7f00000007c0)={0xa, 0x4e23, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c)
bind$inet6(0xffffffffffffffff, &(0x7f0000000800)={0xa, 0x4e22, 0x10001, @mcast2, 0x5}, 0x1c)
ioctl$EXT4_IOC_CHECKPOINT(r6, 0x4004662b, &(0x7f0000000840)=0x2)
dup2(r5, r1)
dup2(r9, r7)
r10 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000880), 0x140, 0x0)
ioctl$LOOP_CTL_ADD(r10, 0x4c80, 0xa)
readv(r6, &(0x7f00000009c0)=[{&(0x7f00000008c0)=""/118, 0x76}, {&(0x7f0000000940)=""/109, 0x6d}], 0x2)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r4, 0x8982, &(0x7f0000000a00)={0x3, 'macvlan0\x00', {0x9}, 0x7})

06:12:22 executing program 7:
setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000000)={@local, @multicast2}, 0x8)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000040)={@broadcast, @multicast1, @broadcast}, 0xc)
setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000080)={@loopback, @local}, 0x8)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
setsockopt$IP_VS_SO_SET_DELDEST(r0, 0x0, 0x488, &(0x7f00000000c0)={{0x1d, @local, 0x4e23, 0x4, 'sh\x00', 0x10, 0x7bf834e4, 0x48}, {@multicast2, 0x4e21, 0x10000, 0x9, 0x200, 0x1}}, 0x44)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000140)={@initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, 0xc)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_mreqsrc(r1, 0x0, 0x28, &(0x7f0000000180)={@remote, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2}, 0xc)
write$binfmt_misc(r0, &(0x7f00000001c0)={'syz0', "853518fdb40c5932b981a8df243d40bfdcdfbf76483976290bc9bbc714370f657ca1a78da0d63d904f93ad88d766118739011568102bb62d430c6a66245d869e9e2f9d0fc3dce1ded61f9f89155405a0f98ac77874d3f8882f5587e0eda89c8b1ed83e80eeaad272e9fd75606aef734540f40a835e131d4edd1a9de592bdbedf41e2c5c16af14777f92ddf04a17a0987948c79181893e4f9d666dbfbceb2e816b713a3928078c9634072fd99139bc69fb3373e9f0e6670257e825404470a27d216e5c754b1c3060778e5812426e9e52955f35acef84b50c7"}, 0xdc)
r2 = dup3(r0, r1, 0x0)
setsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f00000002c0)={0x0, @multicast2, @private=0xa010102}, 0xc)
setsockopt$inet_mreqsrc(r1, 0x0, 0xa5be927f1bb6c864, &(0x7f0000000300)={@private=0xa010100, @empty, @dev={0xac, 0x14, 0x14, 0x16}}, 0xc)
setsockopt$inet_mreqsrc(r1, 0x0, 0x25, &(0x7f0000000340)={@empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1}, 0xc)
getsockopt$IPT_SO_GET_INFO(r2, 0x0, 0x40, &(0x7f0000000380)={'filter\x00', 0x0, [0x4929, 0x0, 0x3, 0x8001, 0x40]}, &(0x7f0000000400)=0x54)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r3=>r1, {r2}}, './file0\x00'})
setsockopt$IP_VS_SO_SET_EDITDEST(r3, 0x0, 0x489, &(0x7f0000000480)={{0x0, @loopback, 0x4e21, 0x3, 'ovf\x00', 0x2, 0x7fff, 0x26}, {@empty, 0x4e23, 0x1, 0x7f, 0x800, 0x5}}, 0x44)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000540)={0x0, {0x2, 0x4e24, @local}, {0x2, 0x4e23, @multicast1}, {0x2, 0x4e24, @broadcast}, 0x284, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000500)='tunl0\x00', 0x0, 0x100000001, 0x3f})
setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, &(0x7f00000005c0)={{0x21, @multicast2, 0x4e21, 0x2, 'lblc\x00', 0x25, 0x36c16ea, 0x56}, {@rand_addr=0x64010101, 0x4e24, 0x4, 0x2, 0xc0000000, 0x2}}, 0x44)
r4 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000680)=[r4, r2], 0x2)

06:12:22 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {<r1=>0x0, 0xee00}}, './file0\x00'})
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002740)=[{{&(0x7f0000000040), 0x6e, &(0x7f0000000540)=[{&(0x7f00000000c0)=""/105, 0x69}, {&(0x7f0000000140)=""/102, 0x66}, {&(0x7f00000001c0)=""/134, 0x86}, {&(0x7f0000000280)=""/73, 0x49}, {&(0x7f0000000300)=""/67, 0x43}, {&(0x7f0000000380)=""/47, 0x2f}, {&(0x7f00000003c0)=""/203, 0xcb}, {&(0x7f00000004c0)=""/76, 0x4c}], 0x8}}, {{&(0x7f00000005c0), 0x6e, &(0x7f0000001c40)=[{&(0x7f0000000640)=""/86, 0x56}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/129, 0x81}, {&(0x7f0000001780)=""/217, 0xd9}, {&(0x7f0000001880)=""/245, 0xf5}, {&(0x7f0000001980)=""/246, 0xf6}, {&(0x7f0000001a80)=""/234, 0xea}, {&(0x7f0000001b80)=""/192, 0xc0}], 0x8, &(0x7f0000001cc0)=[@cred={{0x1c, 0x1, 0x2, {<r2=>0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, <r3=>0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, <r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0xa0}}, {{&(0x7f0000001d80), 0x6e, &(0x7f0000001fc0)=[{&(0x7f0000001e00)=""/177, 0xb1}, {&(0x7f0000001ec0)=""/217, 0xd9}], 0x2, &(0x7f0000002000)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, <r8=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r9=>0x0}}}], 0x58}}, {{&(0x7f0000002080), 0x6e, &(0x7f0000002640)=[{&(0x7f0000002100)=""/8, 0x8}, {&(0x7f0000002140)=""/117, 0x75}, {&(0x7f00000021c0)=""/146, 0x92}, {&(0x7f0000002280)=""/161, 0xa1}, {&(0x7f0000002340)=""/141, 0x8d}, {&(0x7f0000002400)=""/60, 0x3c}, {&(0x7f0000002440)=""/86, 0x56}, {&(0x7f00000024c0)=""/191, 0xbf}, {&(0x7f0000002580)=""/132, 0x84}], 0x9, &(0x7f0000002700)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, <r10=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x40}}], 0x4, 0x102, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000002840)=<r11=>0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000002880)={{0x0, r1, r9, 0xee01, 0x0, 0x4, 0x1ff}, 0x0, 0x0, 0xd85, 0x8000, 0x0, 0x5, 0xbe16, 0xff81, 0x8000, 0x4, 0xffffffffffffffff, r11})
r12 = openat$incfs(r5, &(0x7f0000002900)='.pending_reads\x00', 0x240000, 0x81)
lstat(&(0x7f0000002b40)='./file0\x00', &(0x7f0000002b80)={0x0, 0x0, 0x0, 0x0, <r13=>0x0})
lstat(&(0x7f0000002c00)='./file0\x00', &(0x7f0000002c40)={0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000002cc0)={{0x1, 0x1, 0x18, <r15=>r8}, './file0\x00'})
r16 = fspick(r10, &(0x7f0000002d00)='./file0\x00', 0x0)
recvmsg$unix(r6, &(0x7f0000003f00)={&(0x7f0000002d40)=@abs, 0x6e, &(0x7f0000003e00)=[{&(0x7f0000002dc0)=""/21, 0x15}, {&(0x7f0000002e00)=""/4096, 0x1000}], 0x2, &(0x7f0000003e40)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r17=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, <r18=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r19=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r20=>0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}, 0x2020)
newfstatat(0xffffffffffffff9c, &(0x7f0000003f40)='./file0/../file0\x00', &(0x7f0000003f80)={0x0, 0x0, 0x0, 0x0, 0x0, <r21=>0x0}, 0x0)
sendmsg$unix(r12, &(0x7f0000004080)={&(0x7f0000002940)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002b00)=[{&(0x7f00000029c0)="f5c70c00771a34088ffcd6a0693b09320e0fe20f53152fe5056d193c67cee8fdb3db90f67c18d06526adf7d1744f67db1338de577a869af905c005f86edb50bcc6da54c346e649b10bee4a9f7f027ba2b1cae1b24aeb4997bcc3c8e2b47f2afc6fa018df91986741", 0x68}, {&(0x7f0000002a40)="a885b2dedd1387329de04d25ca978dcf650431c643fb6041d6b1b96867031a086ff38dfc0c01032d338a7afa7c9a6b8d8ff0e67b4e1a2307ef565cbf1cf203487f9b3d319ec8c2b15557f501786727f395ccd02d1267ec8ff16c9445c6d2cb9af72b169e21c9c2468189d1e2a003eaf228dcf1e0b10a8181ea897ef9cc9ecfdd11d6491a40c34478341d71ec90541b4c4cbf3eb8661b02481d585c936b692ba857a9688c", 0xa4}], 0x2, &(0x7f0000004000)=[@cred={{0x1c, 0x1, 0x2, {r2, r13, r14}}}, @rights={{0x2c, 0x1, 0x1, [r7, r4, r15, 0xffffffffffffffff, r3, r0, r16]}}, @cred={{0x1c, 0x1, 0x2, {r11, r20, r21}}}], 0x70, 0x20000080}, 0x40000)
setxattr$trusted_overlay_origin(&(0x7f00000040c0)='./file0\x00', &(0x7f0000004100), &(0x7f0000004140), 0x2, 0x2)
fcntl$setstatus(r18, 0x4, 0x4000)
creat(&(0x7f0000004180)='./file0/../file0\x00', 0xc1)
renameat(r17, &(0x7f00000041c0)='./file0/../file0\x00', r3, &(0x7f0000004200)='./file0\x00')
ioctl$F2FS_IOC_GET_PIN_FILE(r19, 0x8004f50e, &(0x7f0000004240))
newfstatat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', &(0x7f00000042c0), 0x400)
removexattr(&(0x7f0000004340)='./file0/../file0\x00', &(0x7f0000004380)=@random={'system.', 'trusted.overlay.origin\x00'})
ioctl$AUTOFS_DEV_IOCTL_READY(r7, 0xc0189376, &(0x7f0000004400)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0/../file0\x00'})

06:12:22 executing program 4:
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_RX_MAX_FRAMES={0x8, 0x3, 0x3}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0xc0801}, 0x40000)
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r1 = accept4$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000001c0)=0x14, 0xc00)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000000280)={'ip6_vti0\x00', &(0x7f0000000200)={'syztnl1\x00', <r3=>0x0, 0x4, 0x0, 0xff, 0xffffffff, 0x5f, @local, @private1={0xfc, 0x1, '\x00', 0x1}, 0x7800, 0x40, 0x4, 0x40}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wg2\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x84, r0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_DEBUG_HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x20040001}, 0x8000)
getsockopt$packet_buf(r1, 0x107, 0x2, &(0x7f0000000440)=""/250, &(0x7f0000000540)=0xfa)
r5 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000640), 0x200000, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000006c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r5, &(0x7f00000007c0)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x58, 0x0, 0x4, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x2}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x3}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x1}, @NL80211_ATTR_STA_WME={0x24, 0x81, [@NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x1}, @NL80211_STA_WME_MAX_SP={0x5}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x1a}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x7f}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
sendmsg(r5, &(0x7f0000000a40)={&(0x7f0000000800)=@l2tp={0x2, 0x0, @multicast1, 0x2}, 0x80, &(0x7f0000000900)=[{&(0x7f0000000880)="18c41b6ff4367745ca92328b96e1f80cab3eac3566f0c3fd41e5ddc0d5b9d2b7ce7164c42e548f5eb30cc36af7a42495abb65f23b38ce4c3f889517cd962a9b953639d27f358", 0x46}], 0x1, &(0x7f0000000940)=[{0x70, 0x10e, 0xce1, "5dee06400356ebc0069e746c23a37e382522363dc75be5e93672c3da026daa522fff6dfee191466a6ac2ed5797bb74a6c49b892328cc197c21cb742014fce48f5f15b33233767ed77cc85bb772a6e1d583f442ee869277b00bf8"}, {0x40, 0x3a, 0x7, "c7f57c421ac521d14dd0fc55737de6f2420c112329b96a53aaab615c00513e119df35e82704237eb73e5"}, {0x20, 0x113, 0x5, "a101617656fa026fa9"}], 0xd0}, 0x0)
setxattr$security_evm(&(0x7f0000000a80)='./file0\x00', &(0x7f0000000ac0), &(0x7f0000000b00)=@v1={0x2, "fe9271e1a2ec41"}, 0x8, 0x2)
getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000c40)={{{@in=@empty, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in6=@dev}, 0x0, @in=@empty}}, &(0x7f0000000d40)=0xe8)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r5, &(0x7f0000000e40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000d80)={0x44, r0, 0x100, 0x70bd25, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x880}, 0xd0)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000e80)='/proc/vmstat\x00', 0x0, 0x0)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000f00), r5)
sendmsg$DEVLINK_CMD_GET(r8, &(0x7f0000001040)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001000)={&(0x7f0000000f40)={0xa8, r9, 0x0, 0x70bd27, 0x25dfdbfd, {}, [@pci={{0x8}, {0x11}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0xa8}, 0x1, 0x0, 0x0, 0x40000}, 0x40000)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r8, &(0x7f0000001140)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001100)={&(0x7f00000010c0)={0x34, 0x0, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0xd47}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0xfa}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x800}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x8014}, 0x8050)
sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f0000001240)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x810}, 0xc, &(0x7f0000001200)={&(0x7f00000011c0)={0x20, 0x4, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20008085}, 0x1)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000001400)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x20600000}, 0xc, &(0x7f00000013c0)={&(0x7f0000001340)={0x50, 0x0, 0x8, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x4014}, 0x41)

[   93.815165] audit: type=1400 audit(1763187142.092:7): avc:  denied  { execmem } for  pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
06:12:22 executing program 6:
r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r0, 0x8, 0x70bd28, 0x25dfdbfd, {}, ["", "", ""]}, 0x1c}}, 0x8000)
r1 = syz_open_dev$vcsa(&(0x7f0000000140), 0x1, 0x101000)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_SET(r1, &(0x7f0000000540)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000500)={&(0x7f0000000200)={0x2d0, r2, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_ENABLED={0x5, 0x5, 0x1}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_MODES_OURS={0xb0, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0xaa, 0x4, "61ca8ae905ae9023475a7d94df96bb32f77ef583aedcaf2f6d21ca62a68b1bf2d342f26475b86bd5bc3f4ec266b93abdb427bf5b44dc7c8ca4e3a3d00cc12d24c0cc68af2fbb867498c917bb63febf1f2f2e2aaf637a6f2f1f6a7105d458e8b3f6d622c423fe18c40ffe49b690af86664799dd3537caa02fa6e0f939cc871b5f2052de630415a9190eda88f071fa87b7b1770a1d76603627c2bdcbb660f5d94192c6127fb485"}]}, @ETHTOOL_A_EEE_MODES_OURS={0x1d0, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0xb7, 0x5, "466338f2f51e907c36bd98b5a6224e2bd2c986882e3fe47e7938714d651ae6af0d4f6af1430519c5d681309d285dc770515ced778ca8046fe4f90c5054ac114b587f1e1f09c09057af8f6c451ec708b8a9f436a14faefea841f5e4b11c90506947058feea48d18b53145e3abfba2cc0449ec280661100054a01e25810589bf27abb7513a405c84751895b88219ecf1749d2baf8fd6ae39b96fc913cec3feb54c52a46c1838e7d0925995f3c54aeb70786ac6ee"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x4c, 0x4, "7bf50d532a866174b9616981957fb273ce6a7ce3d606b840d058e78c999b8db5141d6155593357725f03c4022890cf98d3a20c14fa8de1668af0dd0d09f05aa35076cdf3c2aec7e9"}, @ETHTOOL_A_BITSET_VALUE={0x6, 0x4, 'vC'}, @ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x5}, @ETHTOOL_A_BITSET_BITS={0xac, 0x3, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '\'{#*,\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'TIPC\x00'}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3e00fa11}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '\xed\xda]%:\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xca43}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '\\-D$&]\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ',\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x401}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}]}, @ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_EEE_ENABLED={0x5, 0x5, 0x1}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x4}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}]}, 0x2d0}, 0x1, 0x0, 0x0, 0x80}, 0x40)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f00000005c0)={@local, <r3=>0x0}, &(0x7f0000000600)=0x14)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000640)={'wg2\x00', <r4=>0x0})
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000c00)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000680)={0x52c, 0x0, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [{{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}]}}, {{0x8}, {0x1dc, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xff}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x8000}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r3}}}]}}, {{0x8}, {0x1e4, 0x2, 0x0, 0x1, [{0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xffff}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0xfc, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r4}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x7c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x4c, 0x4, [{0x1, 0x0, 0x1, 0x2}, {0x100, 0x7, 0x9d, 0x4641da56}, {0x7, 0x9, 0xec, 0x9484}, {0x5, 0x7, 0x4, 0x2}, {0x9d, 0x80, 0x5, 0x3ff}, {0x1, 0x7f, 0x6, 0x3}, {0x1c0, 0x80, 0x81, 0x5}, {0x6, 0xaf, 0x7, 0x6}, {0x3, 0x0, 0x3, 0x2}]}}}]}}]}, 0x52c}, 0x1, 0x0, 0x0, 0x4000000}, 0x80400c0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000c80)={<r5=>0x0, @initdev, @dev}, &(0x7f0000000cc0)=0xc)
getpeername$packet(r1, &(0x7f0000000d00)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000d40)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000e00)={'ip6tnl0\x00', &(0x7f0000000d80)={'ip6gre0\x00', <r7=>r4, 0x29, 0x2, 0x0, 0x2, 0x40, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private0, 0x80, 0x8, 0x81, 0xc89}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000e80)={'syztnl1\x00', &(0x7f0000000e40)={'ip_vti0\x00', <r8=>r4, 0x8, 0x7880, 0x1, 0x6f, {{0x6, 0x4, 0x2, 0x5, 0x18, 0x66, 0x0, 0x4, 0x2f, 0x0, @multicast2, @rand_addr=0x64010100, {[@ra={0x94, 0x4}]}}}}})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000f40)={'syztnl0\x00', &(0x7f0000000ec0)={'syztnl2\x00', <r9=>r3, 0x8000, 0x700, 0x134, 0x2, {{0xf, 0x4, 0x0, 0x2e, 0x3c, 0x68, 0x0, 0x6, 0x4, 0x0, @loopback, @rand_addr=0x64010102, {[@ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4, 0x1}, @generic={0x83, 0xe, "9360b7bdb974ead3161f25ca"}, @cipso={0x86, 0x10, 0x0, [{0x6, 0xa, "78d7f843abe7a2f1"}]}]}}}}})
sendmsg$ETHTOOL_MSG_EEE_GET(r1, &(0x7f0000001100)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000010c0)={&(0x7f0000000f80)={0x120, r2, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}]}, 0x120}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001180)={{{@in6=@empty, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0}}, {{@in=@multicast1}, 0x0, @in6=@private1}}, &(0x7f0000001280)=0xe8)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000012c0)={<r11=>0x0, @rand_addr, @broadcast}, &(0x7f0000001300)=0xc)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001740)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001700)={&(0x7f0000001340)={0x39c, r2, 0x800, 0x70bd26, 0x25dfdbfe, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0x30c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x164, 0x3, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1f}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'wg2\x00'}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '\xed\xda]%:\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, ';%\x00'}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ')\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ',\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fffffff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fffffff}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffffa}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x42}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x101}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x400}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8000}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xe2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, 'veth1_to_hsr\x00'}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '{3,\x00'}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6e82}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '\'{#*,\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x1a, 0x2, 'mcast_rejoin_interval\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x719b42ef}]}]}, @ETHTOOL_A_BITSET_VALUE={0xf2, 0x4, "06ea164668c85d79724fbf21ed6fe64f852cbc7a4e43640971052c252fd2facf8f66750a227d77bb26bcc6f92881455a11e40649bfaadaa37ad6a9abf0732e1b841889fb7f883083b144f557697e7a3f5a15df67284ded26cb6c717a43122f54fbea2307f76f62c00f04ec53ff0d32825b4bedf6723651963feae7b649ba2a9d23e140341155e471553692692132ead1966cb703f2538502e6e91989800a20d7b93a16b51543f5d0eea9eff7c92d5cefeb7de1971c31528ef65d1da8df65534ff25be2b3540c19cd26801c8331a678f1d04b827600fc392dbf86487f523e1f5df1a8609ead312476e059f5984adb"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0xac, 0x4, "de10c9ec3456f0f9d9974ac17ea4c8ec0e4ceb474e218ba7605fdd1741c73ef6bf02cf0021904c9527e87208a008ac60e066dac2f31014f7c873b7261040df6b6550b26c42faecafd7c7f4e7584102a67ffef5232cfbb36783dc29b8a106f8e058a474114d3dbc97be5ee04744b17db329f5f82dc04b3da3226087395fc3e3ddde7b94d856aceb346294350d3c34919723ae9063f23faae169ebfcc5590f36485c3737edc8959c92"}]}, @ETHTOOL_A_DEBUG_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}]}, @ETHTOOL_A_DEBUG_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}]}, 0x39c}, 0x1, 0x0, 0x0, 0x10}, 0x4000001)
setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f0000001780)={@broadcast, @loopback, @broadcast}, 0xc)
setsockopt$inet_mreq(r1, 0x0, 0x24, &(0x7f00000017c0)={@broadcast, @empty}, 0x8)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r1, &(0x7f00000018c0)={&(0x7f0000001800)={0x10, 0x0, 0x0, 0x1910400}, 0xc, &(0x7f0000001880)={&(0x7f0000001840)={0x14, 0x4, 0x8, 0x401, 0x0, 0x0, {0x3, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x8084}, 0x24000800)

06:12:22 executing program 5:
sendmsg$MPTCP_PM_CMD_GET_ADDR(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x64, 0x0, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1901}, @MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @remote}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}]}, 0x64}, 0x1, 0x0, 0x0, 0x90}, 0x20040094)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, r0, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x7}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x5}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x71}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x4}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x15}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x15}]}, 0x64}, 0x1, 0x0, 0x0, 0x10}, 0x20040800)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000300)={[0x1]}, 0x8, 0x0)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r2, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x28, r0, 0x800, 0x8, 0x25dfdbff, {{}, {@void, @void, @val={0xc, 0x99, {0x8, 0x1c}}}}, [@NL80211_ATTR_PID={0x8, 0x52, 0xffffffffffffffff}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
sendmsg$AUDIT_ADD_RULE(r2, &(0x7f0000000900)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000480)={0x42c, 0x3f3, 0x800, 0x70bd2c, 0x25dfdbfe, {0x0, 0x2, 0x33, [0x80, 0x8cd, 0x200, 0xfffffffc, 0x9, 0x7, 0xfffffff7, 0x1767, 0x80, 0x10000000, 0x80000000, 0xfffffffa, 0xe9, 0xaae3, 0xb6c3, 0x7fff, 0x1, 0x40, 0x1ff, 0x5, 0x49, 0x3, 0x81, 0x3ff, 0x8, 0xff, 0xd2f, 0x9d6a, 0x20, 0xffffff7f, 0x3, 0x2, 0x8, 0x96d, 0x98740, 0x7, 0x6, 0x4, 0xffffff81, 0x5, 0x8, 0x2, 0xfffffffd, 0x7, 0x8, 0xfffffa8e, 0x5, 0x1, 0x8, 0x6aa, 0x2, 0x2, 0x7, 0x35, 0xfffffffc, 0x10000, 0x400, 0x2, 0x7, 0x0, 0x7, 0x7f, 0x5, 0x4], [0x3f, 0x9, 0x4, 0xffff, 0x9, 0xe4, 0xba, 0xe00000, 0x7, 0x7, 0x5b, 0xace, 0xbcd6, 0x6, 0x9, 0x0, 0xffffffff, 0xfffff294, 0x5, 0x0, 0x0, 0x0, 0xfff, 0x7fff, 0x400, 0x4, 0x4, 0x0, 0x0, 0x2, 0xc361, 0x1f, 0x6, 0x3, 0x40, 0x9, 0x7fffffff, 0x7fff, 0x434d, 0x7, 0x3, 0x97de, 0x5, 0x7, 0x6, 0x3, 0x9, 0x8, 0x1, 0x8, 0x0, 0xfffffffa, 0x1, 0x0, 0x800, 0x3, 0x8, 0x40, 0x3, 0x6, 0x4, 0x80000000, 0x4, 0x400], [0xdc, 0x4, 0x9, 0x8, 0xa8ff, 0x85e, 0x4, 0x1, 0xbe, 0x62, 0x9, 0xcc, 0x1, 0x7, 0x10000, 0x5, 0x401, 0x6, 0x0, 0x8, 0xc5dc, 0xfe5, 0x5, 0xd6, 0x7ff, 0x0, 0x80000001, 0x7fff, 0x20, 0x7, 0x0, 0x101, 0x2, 0x4, 0xca7, 0x3ff, 0x6, 0x4, 0x7, 0xb058, 0x0, 0x1, 0xdb0f, 0x0, 0x1, 0x3, 0x4, 0x7f, 0x0, 0x9, 0x3, 0x3e01, 0x2, 0x8, 0x28c, 0x10000, 0xffff, 0x200, 0x1d11, 0x5, 0xed, 0x8, 0x0, 0x9], [0xfffffffa, 0x7, 0x7fffffff, 0xffaf, 0x4, 0x2f680, 0x400, 0xff, 0x48bb, 0x2, 0x6, 0x9, 0x1, 0xf, 0x100, 0x2, 0x10000, 0xfffffffb, 0x66, 0x20, 0x54, 0x9, 0x8000, 0xbb9b, 0x1234, 0xff, 0x5, 0x34400, 0x9, 0x8, 0x8000, 0xefa8, 0x8, 0x1, 0x9, 0x4f08, 0x1, 0x1, 0x5, 0x6, 0x4755, 0x200, 0xffffffff, 0x401, 0x2, 0xfffffffd, 0x8, 0xf718, 0x800, 0x10001, 0x9, 0x7, 0x1, 0x8, 0x4, 0x7, 0x40, 0xca17, 0x1, 0x6, 0xfffffffa, 0x855a, 0x7, 0xff], 0x9, ['nl80211\x00', '\x00']}, ["", "", ""]}, 0x42c}, 0x1, 0x0, 0x0, 0x4000000}, 0x404c0c0)
sendmsg$NL80211_CMD_START_NAN(r2, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x3c, r0, 0x300, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x9}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x4}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0xf9}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x4a}]}, 0x3c}, 0x1, 0x0, 0x0, 0x94}, 0x404c845)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000a40)={{0x1, 0x1, 0x18, <r3=>r2, {0x9}}, './file0\x00'})
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f0000000b40)={&(0x7f0000000a80), 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x1c, 0x1, 0x1, 0x301, 0x0, 0x0, {0x3, 0x0, 0x4}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0xfffffffb}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4c895}, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000bc0), r3)
sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f0000000cc0)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000c80)={&(0x7f0000000c00)={0x78, r4, 0x400, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0xfff, 0x39}}}}, [@NL80211_ATTR_KEY_SEQ={0xb, 0xa, "ac592ab903b5bd"}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "49d000833a7d2e340d98c58b85"}]}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "c068becb5c"}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "30d88afa82"}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000000}, 0x40)
getsockname(r3, &(0x7f0000000d00)=@pppol2tpin6={0x18, 0x1, {0x0, <r5=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, &(0x7f0000000d80)=0x80)
sendmsg$AUDIT_TRIM(r5, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x10, 0x3f6, 0x200, 0x70bd26, 0x25dfdbfc, "", ["", "", "", "", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40}, 0x20004000)
sendmsg$IPSET_CMD_RENAME(r3, &(0x7f0000000f80)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000f40)={&(0x7f0000000f00)={0x30, 0x5, 0x6, 0x5, 0x0, 0x0, {0xc, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x48000}, 0x84)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000fc0)={{0x1, 0x1, 0x18, <r6=>r5}, './file0\x00'})
ioctl$sock_FIOSETOWN(r6, 0x8901, &(0x7f0000001000)=0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r3, &(0x7f0000001240)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001200)={&(0x7f0000001080)={0x168, 0x0, 0x100, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xe}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x85}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x40}]}, @TIPC_NLA_SOCK={0x60, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x80000001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2f42d2d0}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_SOCK={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x80000001}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3ff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}]}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2b0}]}, @TIPC_NLA_SOCK={0x38, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x2d}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x40000}, 0x4000080)
sendmsg$NL80211_CMD_REGISTER_FRAME(r3, &(0x7f0000001380)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001340)={&(0x7f00000012c0)={0x70, r0, 0x20, 0x70bd2b, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x5a, 0x5b, "8fe6ce8ec5784254dee89837c07c9a61a426cea7dc74a4166243474b0240ff34cd4d591b6c34a1386b34bc2b5e66308746e42dabf6c8cbb5519603f14c474f60dfd66956888eec4d56195b4ec8fae64f0ffabb088ec5"}]}, 0x70}}, 0x800)
sendmsg$NL80211_CMD_SET_PMK(0xffffffffffffffff, &(0x7f00000014c0)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001480)={&(0x7f0000001440)={0x3c, r0, 0x8, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "67f4eec015fb569a7933ad9cae1f9aa9"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "d7788fef45439b8a3020ecb5842b3477"}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4048805}, 0x4)

[   94.937637] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   94.938629] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   94.939348] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   94.940859] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   94.941911] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   95.065881] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   95.068809] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   95.070099] ==================================================================
[   95.071255] BUG: KASAN: slab-use-after-free in hci_cmd_work+0x66d/0x6d0
[   95.072324] Read of size 2 at addr ffff88800e14e3f8 by task kworker/u11:3/303
[   95.074115] 
[   95.074891] CPU: 0 UID: 0 PID: 303 Comm: kworker/u11:3 Not tainted 6.18.0-rc5-next-20251114 #1 PREEMPT(voluntary) 
[   95.074921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   95.074936] Workqueue: hci2 hci_cmd_work
[   95.074966] Call Trace:
[   95.074974]  <TASK>
[   95.074982]  dump_stack_lvl+0xca/0x120
[   95.075011]  print_report+0xcb/0x610
[   95.075040]  ? __virt_addr_valid+0x100/0x5d0
[   95.075066]  ? hci_cmd_work+0x66d/0x6d0
[   95.075094]  ? hci_cmd_work+0x66d/0x6d0
[   95.075122]  kasan_report+0xca/0x100
[   95.075150]  ? hci_cmd_work+0x66d/0x6d0
[   95.075181]  hci_cmd_work+0x66d/0x6d0
[   95.075211]  process_one_work+0x8e1/0x19c0
[   95.075248]  ? __pfx_process_one_work+0x10/0x10
[   95.075280]  ? move_linked_works+0x172/0x270
[   95.075305]  ? assign_work+0x196/0x240
[   95.075336]  worker_thread+0x67e/0xe90
[   95.075367]  ? trace_irq_enable.constprop.0+0xc2/0x100
[   95.075394]  ? __pfx_worker_thread+0x10/0x10
[   95.075426]  kthread+0x3c8/0x740
[   95.075454]  ? __pfx_kthread+0x10/0x10
[   95.075481]  ? ret_from_fork+0x79/0x7a0
[   95.075504]  ? lock_release+0xc8/0x290
[   95.075537]  ? __pfx_kthread+0x10/0x10
[   95.075566]  ret_from_fork+0x67a/0x7a0
[   95.075588]  ? __pfx_ret_from_fork+0x10/0x10
[   95.075612]  ? __switch_to+0x759/0x1060
[   95.075642]  ? __pfx_kthread+0x10/0x10
[   95.075670]  ret_from_fork_asm+0x1a/0x30
[   95.075707]  </TASK>
[   95.075714] 
[   95.098481] Allocated by task 293:
[   95.099024]  kasan_save_stack+0x24/0x50
[   95.099644]  kasan_save_track+0x14/0x30
[   95.100259]  __kasan_slab_alloc+0x59/0x70
[   95.100905]  kmem_cache_alloc_node_noprof+0x228/0x6b0
[   95.101696]  __alloc_skb+0x2ab/0x370
[   95.102289]  hci_cmd_sync_alloc+0x34/0x300
[   95.102952]  __hci_cmd_sync_sk+0xf7/0x5c0
[   95.103601]  hci_read_local_features_sync+0x2c/0x170
[   95.104381]  hci_dev_open_sync+0x145c/0x1f60
[   95.105060]  hci_power_on+0xdb/0x5d0
[   95.105641]  process_one_work+0x8e1/0x19c0
[   95.106310]  worker_thread+0x67e/0xe90
[   95.106923]  kthread+0x3c8/0x740
[   95.107464]  ret_from_fork+0x67a/0x7a0
[   95.108069]  ret_from_fork_asm+0x1a/0x30
[   95.108703] 
[   95.108974] Freed by task 304:
[   95.109485]  kasan_save_stack+0x24/0x50
[   95.110117]  kasan_save_track+0x14/0x30
[   95.110759]  kasan_save_free_info+0x3a/0x60
[   95.111448]  __kasan_slab_free+0x43/0x70
[   95.112093]  kmem_cache_free+0x26f/0x500
[   95.112741]  kfree_skbmem+0x18a/0x1f0
[   95.113349]  sk_skb_reason_drop+0x10e/0x1b0
[   95.114023]  vhci_read+0x3d5/0x5d0
[   95.114599]  vfs_read+0x1eb/0xc70
[   95.115154]  ksys_read+0x121/0x240
[   95.115716]  do_syscall_64+0xbf/0x430
[   95.116329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.117131] 
[   95.117403] The buggy address belongs to the object at ffff88800e14e3c0
[   95.117403]  which belongs to the cache skbuff_head_cache of size 232
[   95.119394] The buggy address is located 56 bytes inside of
[   95.119394]  freed 232-byte region [ffff88800e14e3c0, ffff88800e14e4a8)
[   95.121194] 
[   95.121455] The buggy address belongs to the physical page:
[   95.122294] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xe14e
[   95.123444] memcg:ffff88800c185301
[   95.123972] flags: 0x100000000000000(node=0|zone=1)
[   95.124710] page_type: f5(slab)
[   95.125212] raw: 0100000000000000 ffff8880096c78c0 ffffea000057e9c0 dead000000000002
[   95.126350] raw: 0000000000000000 00000000000c000c 00000000f5000000 ffff88800c185301
[   95.127479] page dumped because: kasan: bad access detected
[   95.128299] 
[   95.128560] Memory state around the buggy address:
[   95.129275]  ffff88800e14e280: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   95.130525]  ffff88800e14e300: fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc
[   95.131779] >ffff88800e14e380: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[   95.133018]                                                                 ^
[   95.134282]  ffff88800e14e400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   95.135477]  ffff88800e14e480: fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc
[   95.136493] ==================================================================
[   95.139221] Disabling lock debugging due to kernel taint
[   95.141513] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   95.142072] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   95.151078] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   95.153871] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   95.156216] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   95.162706] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   95.163851] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   95.163949] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   95.165319] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   95.165644] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   95.168788] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   95.168952] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   95.170218] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   95.170403] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   95.171636] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   95.174862] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   95.176354] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   95.176824] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   95.178558] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   95.181902] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   95.182071] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   95.184306] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   95.195637] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   95.213713] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   95.215055] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   95.216290] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   95.218619] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   95.220179] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   95.251202] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   95.292551] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   95.306688] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   95.348078] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   95.355975] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   96.973471] Bluetooth: hci0: command tx timeout
[   97.229503] Bluetooth: hci3: command tx timeout
[   97.229573] Bluetooth: hci6: command tx timeout
[   97.229918] Bluetooth: hci1: command tx timeout
[   97.230791] Bluetooth: hci4: command tx timeout
[   97.230828] Bluetooth: hci2: command tx timeout
[   97.231269] Bluetooth: hci5: command tx timeout
[   97.421574] Bluetooth: hci7: command tx timeout
[   99.022543] Bluetooth: hci0: command tx timeout
[   99.277601] Bluetooth: hci2: command tx timeout
[   99.277622] Bluetooth: hci5: command tx timeout
[   99.277649] Bluetooth: hci4: command tx timeout
[   99.278425] Bluetooth: hci1: command tx timeout
[   99.279064] Bluetooth: hci6: command tx timeout
[   99.279575] Bluetooth: hci3: command tx timeout
[   99.469510] Bluetooth: hci7: command tx timeout
[  101.072462] Bluetooth: hci0: command tx timeout
[  101.325786] Bluetooth: hci1: command tx timeout
[  101.326271] Bluetooth: hci3: command tx timeout
[  101.327188] Bluetooth: hci6: command tx timeout
[  101.327609] Bluetooth: hci4: command tx timeout
[  101.327989] Bluetooth: hci2: command tx timeout
[  101.328376] Bluetooth: hci5: command tx timeout
[  101.517473] Bluetooth: hci7: command tx timeout
[  103.117477] Bluetooth: hci0: command tx timeout
[  103.373582] Bluetooth: hci6: command tx timeout
[  103.374050] Bluetooth: hci5: command tx timeout
[  103.375099] Bluetooth: hci2: command tx timeout
[  103.375507] Bluetooth: hci4: command tx timeout
[  103.375889] Bluetooth: hci3: command tx timeout
[  103.376282] Bluetooth: hci1: command tx timeout
[  103.565517] Bluetooth: hci7: command tx timeout

VM DIAGNOSIS:
06:12:23  Registers:
info registers vcpu 0
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8293dd05 RDI=ffffffff889747c0 RBP=ffffffff88974780 RSP=ffff8880178c7618
R8 =0000000000000000 R9 =ffffed1001615046 R10=0000000000000030 R11=000000003a555043
R12=0000000000000030 R13=0000000000000010 R14=ffffffff88974780 R15=ffffffff8293dcf0
RIP=ffffffff8293dd5d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e538f000 00000000 00000000
LDT=0000 fffffe0b00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055557cc726e8 CR3=000000000d301000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=7465677261742e79636e656772656d65
XMM02=00000000000000210000000000000030 XMM03=00005611e1830068746f6f7465756c42
XMM04=2e2e2e2e2e2e2e2e2e2e2e2e2e2e2e2e XMM05=00000000ffffffff00005611e1834b60
XMM06=697665642e3030323a306963682d3069 XMM07=00000000000000000000000000000000
XMM08=37313165386361353430613364393734 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000001 RBX=dead000000000100 RCX=ffffffff8152e363 RDX=0000000000000000
RSI=0000000000000004 RDI=ffff88800f257d00 RBP=ffff8880126ad940 RSP=ffff88800f257d90
R8 =0000000000000001 R9 =ffffed1001e4afa0 R10=0000000000000003 R11=0000000000000001
R12=ffff88800e985340 R13=ffff888012631dc0 R14=0000000000000246 R15=ffff8880126ad940
RIP=ffffffff81b64608 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e548f000 00000000 00000000
LDT=0000 fffffe0600000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fd75acfb070 CR3=000000001ec5c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007fd75adbe7c000007fd75adbe7c8
XMM02=00007fd75adbe7e000007fd75adbe7c0 XMM03=00007fd75adbe7c800007fd75adbe7c0
XMM04=ffffffffffffffffffffffffffffff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000