Debian GNU/Linux 11 syzkaller ttyS0

Warning: Permanently added '[localhost]:49023' (ECDSA) to the list of known hosts.
2025/11/15 09:42:32 fuzzer started
2025/11/15 09:42:32 dialing manager at localhost:37161
syzkaller login: [   50.859201] cgroup: Unknown subsys name 'net'
[   50.918846] cgroup: Unknown subsys name 'cpuset'
[   50.933097] cgroup: Unknown subsys name 'rlimit'
2025/11/15 09:42:43 syscalls: 2214
2025/11/15 09:42:43 code coverage: enabled
2025/11/15 09:42:43 comparison tracing: enabled
2025/11/15 09:42:43 extra coverage: enabled
2025/11/15 09:42:43 setuid sandbox: enabled
2025/11/15 09:42:43 namespace sandbox: enabled
2025/11/15 09:42:43 Android sandbox: enabled
2025/11/15 09:42:43 fault injection: enabled
2025/11/15 09:42:43 leak checking: enabled
2025/11/15 09:42:43 net packet injection: enabled
2025/11/15 09:42:43 net device setup: enabled
2025/11/15 09:42:43 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/11/15 09:42:43 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/11/15 09:42:43 USB emulation: enabled
2025/11/15 09:42:43 hci packet injection: enabled
2025/11/15 09:42:43 wifi device emulation: enabled
2025/11/15 09:42:43 802.15.4 emulation: enabled
2025/11/15 09:42:43 fetching corpus: 50, signal 22481/24330 (executing program)
2025/11/15 09:42:43 fetching corpus: 100, signal 35577/39042 (executing program)
2025/11/15 09:42:43 fetching corpus: 150, signal 47544/52511 (executing program)
2025/11/15 09:42:43 fetching corpus: 200, signal 52788/59251 (executing program)
2025/11/15 09:42:43 fetching corpus: 250, signal 59151/66994 (executing program)
2025/11/15 09:42:43 fetching corpus: 300, signal 66673/75724 (executing program)
2025/11/15 09:42:43 fetching corpus: 350, signal 69970/80359 (executing program)
2025/11/15 09:42:43 fetching corpus: 400, signal 73905/85549 (executing program)
2025/11/15 09:42:44 fetching corpus: 450, signal 77275/90153 (executing program)
2025/11/15 09:42:44 fetching corpus: 500, signal 80892/94882 (executing program)
2025/11/15 09:42:44 fetching corpus: 550, signal 84040/99180 (executing program)
2025/11/15 09:42:44 fetching corpus: 600, signal 87553/103710 (executing program)
2025/11/15 09:42:44 fetching corpus: 650, signal 89467/106776 (executing program)
2025/11/15 09:42:44 fetching corpus: 700, signal 91768/110173 (executing program)
2025/11/15 09:42:44 fetching corpus: 750, signal 95254/114567 (executing program)
2025/11/15 09:42:44 fetching corpus: 800, signal 97001/117354 (executing program)
2025/11/15 09:42:45 fetching corpus: 850, signal 99266/120555 (executing program)
2025/11/15 09:42:45 fetching corpus: 900, signal 102234/124372 (executing program)
2025/11/15 09:42:45 fetching corpus: 950, signal 105699/128648 (executing program)
2025/11/15 09:42:45 fetching corpus: 1000, signal 107179/131140 (executing program)
2025/11/15 09:42:45 fetching corpus: 1050, signal 108877/133773 (executing program)
2025/11/15 09:42:45 fetching corpus: 1100, signal 110916/136681 (executing program)
2025/11/15 09:42:45 fetching corpus: 1150, signal 112660/139317 (executing program)
2025/11/15 09:42:45 fetching corpus: 1200, signal 114028/141588 (executing program)
2025/11/15 09:42:45 fetching corpus: 1250, signal 117534/145570 (executing program)
2025/11/15 09:42:46 fetching corpus: 1300, signal 118643/147550 (executing program)
2025/11/15 09:42:46 fetching corpus: 1350, signal 120004/149744 (executing program)
2025/11/15 09:42:46 fetching corpus: 1400, signal 120874/151546 (executing program)
2025/11/15 09:42:46 fetching corpus: 1450, signal 122063/153582 (executing program)
2025/11/15 09:42:46 fetching corpus: 1500, signal 123779/155941 (executing program)
2025/11/15 09:42:46 fetching corpus: 1550, signal 125365/158254 (executing program)
2025/11/15 09:42:46 fetching corpus: 1600, signal 126762/160385 (executing program)
2025/11/15 09:42:46 fetching corpus: 1650, signal 128195/162476 (executing program)
2025/11/15 09:42:46 fetching corpus: 1700, signal 129486/164469 (executing program)
2025/11/15 09:42:46 fetching corpus: 1750, signal 130670/166357 (executing program)
2025/11/15 09:42:46 fetching corpus: 1800, signal 131361/167878 (executing program)
2025/11/15 09:42:47 fetching corpus: 1850, signal 132381/169675 (executing program)
2025/11/15 09:42:47 fetching corpus: 1900, signal 133660/171573 (executing program)
2025/11/15 09:42:47 fetching corpus: 1950, signal 134277/173019 (executing program)
2025/11/15 09:42:47 fetching corpus: 2000, signal 135892/175059 (executing program)
2025/11/15 09:42:47 fetching corpus: 2050, signal 136868/176743 (executing program)
2025/11/15 09:42:47 fetching corpus: 2100, signal 137552/178171 (executing program)
2025/11/15 09:42:47 fetching corpus: 2150, signal 138571/179818 (executing program)
2025/11/15 09:42:47 fetching corpus: 2200, signal 139293/181280 (executing program)
2025/11/15 09:42:47 fetching corpus: 2250, signal 140088/182748 (executing program)
2025/11/15 09:42:47 fetching corpus: 2300, signal 140871/184257 (executing program)
2025/11/15 09:42:48 fetching corpus: 2350, signal 141881/185864 (executing program)
2025/11/15 09:42:48 fetching corpus: 2400, signal 142839/187409 (executing program)
2025/11/15 09:42:48 fetching corpus: 2450, signal 143877/189014 (executing program)
2025/11/15 09:42:48 fetching corpus: 2500, signal 145027/190690 (executing program)
2025/11/15 09:42:48 fetching corpus: 2550, signal 146184/192330 (executing program)
2025/11/15 09:42:48 fetching corpus: 2600, signal 146717/193550 (executing program)
2025/11/15 09:42:48 fetching corpus: 2650, signal 147637/194986 (executing program)
2025/11/15 09:42:48 fetching corpus: 2700, signal 148348/196313 (executing program)
2025/11/15 09:42:48 fetching corpus: 2750, signal 149176/197669 (executing program)
2025/11/15 09:42:48 fetching corpus: 2800, signal 150070/199058 (executing program)
2025/11/15 09:42:48 fetching corpus: 2850, signal 150658/200250 (executing program)
2025/11/15 09:42:49 fetching corpus: 2900, signal 151335/201454 (executing program)
2025/11/15 09:42:49 fetching corpus: 2950, signal 152553/202972 (executing program)
2025/11/15 09:42:49 fetching corpus: 3000, signal 153148/204180 (executing program)
2025/11/15 09:42:49 fetching corpus: 3050, signal 154008/205547 (executing program)
2025/11/15 09:42:49 fetching corpus: 3100, signal 154944/206876 (executing program)
2025/11/15 09:42:49 fetching corpus: 3150, signal 155532/208005 (executing program)
2025/11/15 09:42:49 fetching corpus: 3200, signal 156210/209189 (executing program)
2025/11/15 09:42:49 fetching corpus: 3250, signal 157013/210453 (executing program)
2025/11/15 09:42:49 fetching corpus: 3300, signal 158191/211883 (executing program)
2025/11/15 09:42:49 fetching corpus: 3350, signal 158682/212882 (executing program)
2025/11/15 09:42:49 fetching corpus: 3400, signal 159113/213906 (executing program)
2025/11/15 09:42:49 fetching corpus: 3450, signal 159549/214926 (executing program)
2025/11/15 09:42:49 fetching corpus: 3500, signal 160131/216017 (executing program)
2025/11/15 09:42:50 fetching corpus: 3550, signal 161009/217174 (executing program)
2025/11/15 09:42:50 fetching corpus: 3600, signal 161857/218413 (executing program)
2025/11/15 09:42:50 fetching corpus: 3650, signal 162706/219615 (executing program)
2025/11/15 09:42:50 fetching corpus: 3700, signal 163301/220664 (executing program)
2025/11/15 09:42:50 fetching corpus: 3750, signal 163822/221659 (executing program)
2025/11/15 09:42:50 fetching corpus: 3800, signal 164387/222690 (executing program)
2025/11/15 09:42:50 fetching corpus: 3850, signal 164717/223610 (executing program)
2025/11/15 09:42:50 fetching corpus: 3900, signal 165276/224629 (executing program)
2025/11/15 09:42:50 fetching corpus: 3950, signal 165679/225556 (executing program)
2025/11/15 09:42:50 fetching corpus: 4000, signal 166203/226524 (executing program)
2025/11/15 09:42:50 fetching corpus: 4050, signal 166717/227490 (executing program)
2025/11/15 09:42:50 fetching corpus: 4100, signal 167325/228477 (executing program)
2025/11/15 09:42:51 fetching corpus: 4150, signal 167826/229375 (executing program)
2025/11/15 09:42:51 fetching corpus: 4200, signal 168485/230356 (executing program)
2025/11/15 09:42:51 fetching corpus: 4250, signal 169055/231282 (executing program)
2025/11/15 09:42:51 fetching corpus: 4300, signal 169654/232213 (executing program)
2025/11/15 09:42:51 fetching corpus: 4350, signal 170356/233218 (executing program)
2025/11/15 09:42:51 fetching corpus: 4400, signal 170841/234110 (executing program)
2025/11/15 09:42:51 fetching corpus: 4450, signal 171390/234967 (executing program)
2025/11/15 09:42:51 fetching corpus: 4500, signal 171931/235902 (executing program)
2025/11/15 09:42:51 fetching corpus: 4550, signal 172621/236830 (executing program)
2025/11/15 09:42:51 fetching corpus: 4600, signal 173427/237813 (executing program)
2025/11/15 09:42:52 fetching corpus: 4650, signal 173909/238673 (executing program)
2025/11/15 09:42:52 fetching corpus: 4700, signal 174336/239467 (executing program)
2025/11/15 09:42:52 fetching corpus: 4750, signal 175050/240380 (executing program)
2025/11/15 09:42:52 fetching corpus: 4800, signal 175566/241229 (executing program)
2025/11/15 09:42:52 fetching corpus: 4850, signal 176241/242095 (executing program)
2025/11/15 09:42:52 fetching corpus: 4900, signal 176901/242982 (executing program)
2025/11/15 09:42:52 fetching corpus: 4950, signal 177285/243787 (executing program)
2025/11/15 09:42:52 fetching corpus: 5000, signal 177774/244579 (executing program)
2025/11/15 09:42:52 fetching corpus: 5050, signal 178536/245410 (executing program)
2025/11/15 09:42:53 fetching corpus: 5100, signal 178995/246159 (executing program)
2025/11/15 09:42:53 fetching corpus: 5150, signal 179688/246970 (executing program)
2025/11/15 09:42:53 fetching corpus: 5200, signal 180136/247722 (executing program)
2025/11/15 09:42:53 fetching corpus: 5250, signal 180874/248518 (executing program)
2025/11/15 09:42:53 fetching corpus: 5300, signal 181404/249252 (executing program)
2025/11/15 09:42:53 fetching corpus: 5350, signal 181829/249968 (executing program)
2025/11/15 09:42:53 fetching corpus: 5400, signal 182170/250675 (executing program)
2025/11/15 09:42:53 fetching corpus: 5450, signal 182619/251381 (executing program)
2025/11/15 09:42:53 fetching corpus: 5500, signal 183049/252087 (executing program)
2025/11/15 09:42:53 fetching corpus: 5550, signal 183384/252766 (executing program)
2025/11/15 09:42:54 fetching corpus: 5600, signal 183963/253494 (executing program)
2025/11/15 09:42:54 fetching corpus: 5650, signal 184400/254181 (executing program)
2025/11/15 09:42:54 fetching corpus: 5700, signal 184751/254840 (executing program)
2025/11/15 09:42:54 fetching corpus: 5750, signal 185129/255493 (executing program)
2025/11/15 09:42:54 fetching corpus: 5800, signal 185550/256142 (executing program)
2025/11/15 09:42:54 fetching corpus: 5850, signal 186202/256783 (executing program)
2025/11/15 09:42:54 fetching corpus: 5900, signal 186562/257420 (executing program)
2025/11/15 09:42:54 fetching corpus: 5950, signal 187054/258061 (executing program)
2025/11/15 09:42:54 fetching corpus: 6000, signal 187457/258662 (executing program)
2025/11/15 09:42:54 fetching corpus: 6050, signal 187796/259292 (executing program)
2025/11/15 09:42:55 fetching corpus: 6100, signal 188395/259933 (executing program)
2025/11/15 09:42:55 fetching corpus: 6150, signal 188900/260561 (executing program)
2025/11/15 09:42:55 fetching corpus: 6200, signal 189119/261138 (executing program)
2025/11/15 09:42:55 fetching corpus: 6250, signal 189696/261775 (executing program)
2025/11/15 09:42:55 fetching corpus: 6300, signal 190125/262364 (executing program)
2025/11/15 09:42:55 fetching corpus: 6350, signal 190481/262936 (executing program)
2025/11/15 09:42:55 fetching corpus: 6400, signal 190799/263512 (executing program)
2025/11/15 09:42:55 fetching corpus: 6450, signal 191088/264059 (executing program)
2025/11/15 09:42:55 fetching corpus: 6500, signal 191388/264641 (executing program)
2025/11/15 09:42:55 fetching corpus: 6550, signal 191741/265225 (executing program)
2025/11/15 09:42:56 fetching corpus: 6600, signal 192148/265762 (executing program)
2025/11/15 09:42:56 fetching corpus: 6650, signal 192460/266312 (executing program)
2025/11/15 09:42:56 fetching corpus: 6700, signal 192789/266424 (executing program)
2025/11/15 09:42:56 fetching corpus: 6750, signal 193304/266424 (executing program)
2025/11/15 09:42:56 fetching corpus: 6800, signal 193759/266424 (executing program)
2025/11/15 09:42:56 fetching corpus: 6850, signal 194055/266427 (executing program)
2025/11/15 09:42:56 fetching corpus: 6900, signal 194317/266427 (executing program)
2025/11/15 09:42:56 fetching corpus: 6950, signal 194646/266427 (executing program)
2025/11/15 09:42:56 fetching corpus: 7000, signal 195041/266427 (executing program)
2025/11/15 09:42:56 fetching corpus: 7050, signal 195401/266427 (executing program)
2025/11/15 09:42:57 fetching corpus: 7100, signal 195698/266427 (executing program)
2025/11/15 09:42:57 fetching corpus: 7150, signal 196037/266427 (executing program)
2025/11/15 09:42:57 fetching corpus: 7200, signal 196456/266427 (executing program)
2025/11/15 09:42:57 fetching corpus: 7250, signal 196807/266427 (executing program)
2025/11/15 09:42:57 fetching corpus: 7300, signal 197142/266427 (executing program)
2025/11/15 09:42:57 fetching corpus: 7350, signal 197454/266427 (executing program)
2025/11/15 09:42:57 fetching corpus: 7400, signal 197686/266427 (executing program)
2025/11/15 09:42:57 fetching corpus: 7450, signal 198047/266427 (executing program)
2025/11/15 09:42:57 fetching corpus: 7500, signal 198469/266434 (executing program)
2025/11/15 09:42:57 fetching corpus: 7550, signal 198772/266435 (executing program)
2025/11/15 09:42:58 fetching corpus: 7600, signal 199099/266435 (executing program)
2025/11/15 09:42:58 fetching corpus: 7650, signal 199437/266435 (executing program)
2025/11/15 09:42:58 fetching corpus: 7700, signal 199870/266439 (executing program)
2025/11/15 09:42:58 fetching corpus: 7750, signal 200169/266439 (executing program)
2025/11/15 09:42:58 fetching corpus: 7800, signal 200558/266439 (executing program)
2025/11/15 09:42:58 fetching corpus: 7850, signal 200838/266439 (executing program)
2025/11/15 09:42:58 fetching corpus: 7900, signal 201054/266439 (executing program)
2025/11/15 09:42:58 fetching corpus: 7950, signal 201338/266439 (executing program)
2025/11/15 09:42:58 fetching corpus: 8000, signal 201711/266439 (executing program)
2025/11/15 09:42:58 fetching corpus: 8050, signal 202171/266439 (executing program)
2025/11/15 09:42:58 fetching corpus: 8100, signal 202436/266439 (executing program)
2025/11/15 09:42:59 fetching corpus: 8150, signal 202670/266439 (executing program)
2025/11/15 09:42:59 fetching corpus: 8200, signal 202968/266439 (executing program)
2025/11/15 09:42:59 fetching corpus: 8250, signal 203398/266441 (executing program)
2025/11/15 09:42:59 fetching corpus: 8300, signal 203632/266441 (executing program)
2025/11/15 09:42:59 fetching corpus: 8350, signal 204052/266441 (executing program)
2025/11/15 09:42:59 fetching corpus: 8400, signal 204371/266441 (executing program)
2025/11/15 09:42:59 fetching corpus: 8450, signal 204608/266443 (executing program)
2025/11/15 09:42:59 fetching corpus: 8500, signal 204831/266443 (executing program)
2025/11/15 09:42:59 fetching corpus: 8550, signal 205129/266446 (executing program)
2025/11/15 09:43:00 fetching corpus: 8600, signal 205335/266448 (executing program)
2025/11/15 09:43:00 fetching corpus: 8650, signal 205581/266448 (executing program)
2025/11/15 09:43:00 fetching corpus: 8700, signal 205858/266448 (executing program)
2025/11/15 09:43:00 fetching corpus: 8750, signal 206254/266448 (executing program)
2025/11/15 09:43:00 fetching corpus: 8800, signal 206599/266448 (executing program)
2025/11/15 09:43:00 fetching corpus: 8850, signal 206866/266448 (executing program)
2025/11/15 09:43:00 fetching corpus: 8900, signal 207145/266450 (executing program)
2025/11/15 09:43:00 fetching corpus: 8950, signal 207465/266450 (executing program)
2025/11/15 09:43:00 fetching corpus: 9000, signal 207755/266450 (executing program)
2025/11/15 09:43:00 fetching corpus: 9050, signal 208080/266450 (executing program)
2025/11/15 09:43:01 fetching corpus: 9100, signal 208448/266450 (executing program)
2025/11/15 09:43:01 fetching corpus: 9150, signal 208640/266451 (executing program)
2025/11/15 09:43:01 fetching corpus: 9200, signal 208960/266451 (executing program)
2025/11/15 09:43:01 fetching corpus: 9250, signal 209282/266451 (executing program)
2025/11/15 09:43:01 fetching corpus: 9300, signal 209529/266451 (executing program)
2025/11/15 09:43:01 fetching corpus: 9350, signal 209837/266451 (executing program)
2025/11/15 09:43:01 fetching corpus: 9400, signal 210134/266451 (executing program)
2025/11/15 09:43:01 fetching corpus: 9450, signal 210462/266451 (executing program)
2025/11/15 09:43:01 fetching corpus: 9500, signal 210684/266451 (executing program)
2025/11/15 09:43:01 fetching corpus: 9550, signal 210914/266451 (executing program)
2025/11/15 09:43:02 fetching corpus: 9600, signal 211209/266452 (executing program)
2025/11/15 09:43:02 fetching corpus: 9650, signal 211562/266471 (executing program)
2025/11/15 09:43:02 fetching corpus: 9700, signal 211784/266471 (executing program)
2025/11/15 09:43:02 fetching corpus: 9750, signal 212070/266471 (executing program)
2025/11/15 09:43:02 fetching corpus: 9800, signal 212312/266471 (executing program)
2025/11/15 09:43:02 fetching corpus: 9850, signal 212568/266471 (executing program)
2025/11/15 09:43:02 fetching corpus: 9900, signal 212798/266471 (executing program)
2025/11/15 09:43:02 fetching corpus: 9950, signal 213234/266471 (executing program)
2025/11/15 09:43:02 fetching corpus: 10000, signal 213483/266471 (executing program)
2025/11/15 09:43:03 fetching corpus: 10050, signal 213742/266471 (executing program)
2025/11/15 09:43:03 fetching corpus: 10100, signal 214062/266471 (executing program)
2025/11/15 09:43:03 fetching corpus: 10150, signal 214299/266482 (executing program)
2025/11/15 09:43:03 fetching corpus: 10200, signal 214586/266482 (executing program)
2025/11/15 09:43:03 fetching corpus: 10250, signal 214846/266482 (executing program)
2025/11/15 09:43:03 fetching corpus: 10300, signal 215060/266482 (executing program)
2025/11/15 09:43:03 fetching corpus: 10350, signal 215399/266482 (executing program)
2025/11/15 09:43:03 fetching corpus: 10400, signal 215617/266496 (executing program)
2025/11/15 09:43:03 fetching corpus: 10450, signal 215890/266496 (executing program)
2025/11/15 09:43:03 fetching corpus: 10500, signal 216133/266496 (executing program)
2025/11/15 09:43:04 fetching corpus: 10550, signal 216376/266496 (executing program)
2025/11/15 09:43:04 fetching corpus: 10600, signal 216762/266496 (executing program)
2025/11/15 09:43:04 fetching corpus: 10650, signal 217054/266496 (executing program)
2025/11/15 09:43:04 fetching corpus: 10700, signal 217268/266496 (executing program)
2025/11/15 09:43:04 fetching corpus: 10750, signal 217463/266496 (executing program)
2025/11/15 09:43:04 fetching corpus: 10800, signal 217700/266496 (executing program)
2025/11/15 09:43:04 fetching corpus: 10850, signal 217902/266496 (executing program)
2025/11/15 09:43:04 fetching corpus: 10900, signal 218204/266499 (executing program)
2025/11/15 09:43:04 fetching corpus: 10950, signal 218405/266499 (executing program)
2025/11/15 09:43:05 fetching corpus: 11000, signal 219349/266499 (executing program)
2025/11/15 09:43:05 fetching corpus: 11050, signal 219535/266499 (executing program)
2025/11/15 09:43:05 fetching corpus: 11100, signal 219785/266499 (executing program)
2025/11/15 09:43:05 fetching corpus: 11150, signal 220008/266499 (executing program)
2025/11/15 09:43:05 fetching corpus: 11200, signal 220208/266499 (executing program)
2025/11/15 09:43:05 fetching corpus: 11250, signal 220423/266499 (executing program)
2025/11/15 09:43:05 fetching corpus: 11300, signal 220652/266499 (executing program)
2025/11/15 09:43:05 fetching corpus: 11350, signal 220843/266499 (executing program)
2025/11/15 09:43:05 fetching corpus: 11400, signal 221190/266499 (executing program)
2025/11/15 09:43:05 fetching corpus: 11450, signal 221365/266499 (executing program)
2025/11/15 09:43:06 fetching corpus: 11500, signal 221635/266499 (executing program)
2025/11/15 09:43:06 fetching corpus: 11550, signal 221878/266499 (executing program)
2025/11/15 09:43:06 fetching corpus: 11600, signal 222151/266499 (executing program)
2025/11/15 09:43:06 fetching corpus: 11650, signal 222321/266499 (executing program)
2025/11/15 09:43:06 fetching corpus: 11700, signal 222637/266499 (executing program)
2025/11/15 09:43:06 fetching corpus: 11750, signal 222861/266499 (executing program)
2025/11/15 09:43:06 fetching corpus: 11800, signal 223051/266499 (executing program)
2025/11/15 09:43:06 fetching corpus: 11850, signal 223292/266499 (executing program)
2025/11/15 09:43:06 fetching corpus: 11900, signal 223498/266499 (executing program)
2025/11/15 09:43:06 fetching corpus: 11950, signal 223688/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12000, signal 223925/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12050, signal 224096/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12100, signal 224230/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12150, signal 224454/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12200, signal 224720/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12250, signal 224991/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12300, signal 225141/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12350, signal 225294/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12400, signal 225511/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12450, signal 225691/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12500, signal 226043/266499 (executing program)
2025/11/15 09:43:07 fetching corpus: 12550, signal 226273/266499 (executing program)
2025/11/15 09:43:08 fetching corpus: 12600, signal 226501/266499 (executing program)
2025/11/15 09:43:08 fetching corpus: 12650, signal 226706/266499 (executing program)
2025/11/15 09:43:08 fetching corpus: 12700, signal 226928/266499 (executing program)
2025/11/15 09:43:08 fetching corpus: 12750, signal 227119/266499 (executing program)
2025/11/15 09:43:08 fetching corpus: 12800, signal 227283/266499 (executing program)
2025/11/15 09:43:08 fetching corpus: 12850, signal 227561/266499 (executing program)
2025/11/15 09:43:08 fetching corpus: 12900, signal 227746/266499 (executing program)
2025/11/15 09:43:08 fetching corpus: 12950, signal 227954/266500 (executing program)
2025/11/15 09:43:08 fetching corpus: 13000, signal 228186/266500 (executing program)
2025/11/15 09:43:08 fetching corpus: 13050, signal 228352/266500 (executing program)
2025/11/15 09:43:08 fetching corpus: 13100, signal 228567/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13150, signal 228871/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13200, signal 229089/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13250, signal 229261/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13300, signal 229581/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13350, signal 229772/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13400, signal 229954/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13450, signal 230175/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13500, signal 230344/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13550, signal 230474/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13600, signal 230615/266500 (executing program)
2025/11/15 09:43:09 fetching corpus: 13650, signal 230792/266505 (executing program)
2025/11/15 09:43:09 fetching corpus: 13700, signal 231006/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 13750, signal 231187/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 13800, signal 231343/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 13850, signal 231478/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 13900, signal 231662/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 13950, signal 231819/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 14000, signal 231969/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 14050, signal 232197/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 14100, signal 232370/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 14150, signal 232556/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 14200, signal 232680/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 14250, signal 232919/266505 (executing program)
2025/11/15 09:43:10 fetching corpus: 14300, signal 233113/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14350, signal 233279/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14400, signal 233491/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14450, signal 233710/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14500, signal 233888/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14550, signal 234061/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14600, signal 234216/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14650, signal 234381/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14700, signal 234531/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14750, signal 234775/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14800, signal 235041/266505 (executing program)
2025/11/15 09:43:11 fetching corpus: 14850, signal 235207/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 14900, signal 235357/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 14950, signal 235543/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 15000, signal 235721/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 15050, signal 235858/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 15100, signal 236044/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 15150, signal 236259/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 15200, signal 236415/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 15250, signal 236618/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 15300, signal 236897/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 15350, signal 237052/266509 (executing program)
2025/11/15 09:43:12 fetching corpus: 15400, signal 237225/266509 (executing program)
2025/11/15 09:43:13 fetching corpus: 15450, signal 237390/266509 (executing program)
2025/11/15 09:43:13 fetching corpus: 15500, signal 237531/266509 (executing program)
2025/11/15 09:43:13 fetching corpus: 15550, signal 237710/266509 (executing program)
2025/11/15 09:43:13 fetching corpus: 15600, signal 237943/266509 (executing program)
2025/11/15 09:43:13 fetching corpus: 15650, signal 238094/266510 (executing program)
2025/11/15 09:43:13 fetching corpus: 15700, signal 238280/266510 (executing program)
2025/11/15 09:43:13 fetching corpus: 15750, signal 238412/266510 (executing program)
2025/11/15 09:43:13 fetching corpus: 15800, signal 238563/266510 (executing program)
2025/11/15 09:43:13 fetching corpus: 15850, signal 238717/266510 (executing program)
2025/11/15 09:43:13 fetching corpus: 15900, signal 238915/266510 (executing program)
2025/11/15 09:43:13 fetching corpus: 15950, signal 239044/266510 (executing program)
2025/11/15 09:43:13 fetching corpus: 16000, signal 239193/266510 (executing program)
2025/11/15 09:43:14 fetching corpus: 16050, signal 239306/266510 (executing program)
2025/11/15 09:43:14 fetching corpus: 16081, signal 239392/266510 (executing program)
2025/11/15 09:43:14 fetching corpus: 16081, signal 239392/266510 (executing program)
2025/11/15 09:43:15 starting 8 fuzzer processes
09:43:15 executing program 1:
setsockopt$bt_BT_RCVMTU(0xffffffffffffffff, 0x112, 0xd, &(0x7f0000000000)=0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r0=>0x0})
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000100)=""/144, 0x90}, {&(0x7f00000001c0)=""/109, 0x6d}, {&(0x7f0000000240)=""/159, 0x9f}, {&(0x7f0000000300)=""/169, 0xa9}], 0x4, &(0x7f0000000400)=[@cred={{0x1c, 0x1, 0x2, {<r1=>0x0}}}, @cred={{0x1c, 0x1, 0x2, {<r2=>0x0}}}, @rights={{0x28, 0x1, 0x1, [<r3=>0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff]}}], 0x68}, 0x2)
r7 = gettid()
r8 = syz_open_procfs(r2, &(0x7f0000000580)='net/route\x00')
perf_event_open(&(0x7f0000000500)={0x4, 0x80, 0xff, 0x2, 0xff, 0x1, 0x0, 0x5, 0x40080, 0x8, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x80000000, 0x3, @perf_bp={&(0x7f00000004c0), 0x4}, 0x9061, 0x0, 0x9, 0x5, 0x5, 0x8, 0x6, 0x0, 0xd54f, 0x0, 0x7ff}, r7, 0x6, r8, 0x2)
r9 = socket(0xf, 0x5, 0x7)
fchmod(r9, 0xc1)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000600), r6)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f00000006c0)={'syztnl0\x00', &(0x7f0000000640)={'syztnl0\x00', <r11=>r0, 0x4, 0xff, 0x1, 0x9, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @empty, 0x20, 0x700, 0xfffffff8, 0x2}})
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r4, 0x89f7, &(0x7f0000000780)={'syztnl0\x00', &(0x7f0000000700)={'ip6gre0\x00', <r12=>r0, 0x4, 0x1, 0x81, 0x5, 0x2, @mcast1, @empty, 0xff00, 0x1, 0x179, 0x100}})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000800)={'macvlan0\x00', <r13=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r9, &(0x7f0000000940)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x82800}, 0xc, &(0x7f0000000900)={&(0x7f0000000840)={0xb8, r10, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x800}, 0x41)
pread64(r3, &(0x7f0000000980)=""/59, 0x3b, 0x3)
socket(0xb, 0x1, 0x0)
r14 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCSPGRP(r14, 0x8902, &(0x7f00000009c0)=r7)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000a00)={0x2, r1})
r15 = socket$nl_audit(0x10, 0x3, 0x9)
pread64(r15, &(0x7f0000000a40)=""/248, 0xf8, 0x4)

09:43:15 executing program 2:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x1098c2, 0x0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x880}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, 0x0, 0x8, 0x70bd27, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0xff}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}}, 0x4000000)
sendmsg$SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x78, 0x0, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@SEG6_ATTR_SECRET={0x14, 0x4, [0xffffffff, 0x3, 0x70b, 0x80c]}, @SEG6_ATTR_SECRET={0x14, 0x4, [0x2, 0x72d, 0x5, 0x6]}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x6}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x1}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x800}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xff}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x7}, @SEG6_ATTR_DST={0x14, 0x1, @empty}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NL80211_CMD_ADD_TX_TS(r0, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x44, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xffffeb32, 0x4b}}}}, [@NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0xfb}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xc}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xb}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x20004082)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000480)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x7}}, './file0\x00'})
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000500), r0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f00000005c0)={'syztnl0\x00', &(0x7f0000000540)={'ip6gre0\x00', <r3=>0x0, 0x29, 0x2, 0x63, 0x8, 0x1, @dev={0xfe, 0x80, '\x00', 0xe}, @ipv4={'\x00', '\xff\xff', @remote}, 0x8000, 0x40, 0x3ff, 0x8}})
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r1, &(0x7f00000006c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x70, r2, 0x100, 0x70bd2a, 0x35b, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_ADDR={0x38, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x5f}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r3}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0xf8}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x801}, 0x48080)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000700)={<r4=>r1, 0x591, 0xfffffffffffffff9, 0x9})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r4, &(0x7f0000000b40)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000780)={0x36c, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_TX_RATES={0x19c, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xf8, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x80, 0x3ff, 0x7f, 0x68d, 0x1, 0x8, 0x8, 0xffff]}}, @NL80211_TXRATE_HT={0x41, 0x2, [{0x4, 0x9}, {0x3, 0x9}, {0x0, 0x1}, {0x0, 0x7}, {0x6, 0x4}, {0x4, 0x4}, {0x6, 0x2}, {0x4, 0xa}, {0x5, 0x8}, {0x1, 0x3}, {0x2, 0x6}, {0x0, 0x3}, {0x7, 0x6}, {0x0, 0x2}, {0x3, 0xa}, {0x3, 0x7}, {0x1}, {0x5, 0x5}, {0x2, 0x6}, {0x2}, {0x5}, {0x3, 0xa}, {0x1, 0xa}, {0x5, 0x7}, {}, {0x7, 0x5}, {0x1, 0x6}, {0x1, 0x3}, {0x1, 0x1}, {0x0, 0x4}, {0x7, 0x8}, {0x6, 0x3}, {0x0, 0x4}, {0x4, 0x5}, {0x0, 0x7}, {}, {0x1, 0x6}, {0x1, 0x1}, {0x1, 0x5}, {0x6, 0x1}, {0x1, 0x2}, {0x0, 0x4}, {0x2, 0x4}, {0x1, 0x8}, {0x4, 0x9}, {0x0, 0x3}, {0x1}, {0x3, 0xa}, {0x3, 0x9}, {0x1, 0x5}, {0x3}, {0x0, 0x5}, {0x4, 0x3}, {0x1, 0x6}, {0x3, 0x9}, {0x6, 0x3}, {0x0, 0x3}, {0x1, 0x6}, {0x1, 0x5}, {0x5, 0x6}, {0x6, 0x5}]}, @NL80211_TXRATE_HT={0x40, 0x2, [{0x3, 0x6}, {0x3, 0x3}, {0x7, 0x6}, {0x1, 0x8}, {0x4, 0x2}, {0x5, 0x7}, {0x4, 0x5}, {0x4, 0x5}, {0x5, 0x3}, {0x5, 0x6}, {0x1, 0x9}, {0x0, 0xa}, {0x4, 0xa}, {0x1, 0xa}, {0x2, 0x5}, {0x5, 0x7}, {0x2, 0xa}, {0x5, 0x1}, {0x7, 0x9}, {0x2, 0x7}, {}, {0x5, 0xa}, {0x7, 0x6}, {0x6, 0x5}, {0x3, 0x2}, {0x4, 0x8}, {0x0, 0x7}, {0x5, 0x8}, {0x0, 0x4}, {0x5, 0x6}, {0x3, 0x6}, {0x4, 0x4}, {0x1, 0x5}, {0x4, 0x6}, {0x1, 0x1}, {0x4, 0x1}, {0x7, 0x8}, {0x1, 0x1}, {0x1, 0x2}, {0x2, 0x3}, {0x5, 0xa}, {0x3, 0x6}, {0x1}, {0x5, 0x2}, {0x2, 0x8}, {0x7}, {0x7, 0x8}, {0x4}, {0x1, 0x6}, {0x6, 0x5}, {0x1, 0xa}, {0x5, 0x5}, {0x3, 0x5}, {0x6, 0x4}, {0x0, 0x4}, {0x2, 0x3}, {0x3, 0x2}, {0x7, 0x8}, {0x1, 0x4}, {0x6, 0x2}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x2, 0x1, 0xffff, 0x7, 0x700, 0x8001, 0xa1]}}, @NL80211_TXRATE_HT={0x45, 0x2, [{0x2, 0xa}, {0x4, 0x3}, {0x6, 0x1}, {0x5, 0xa}, {0x1, 0x8}, {0x0, 0x2}, {0x2, 0x5}, {0x2, 0x5}, {0x1, 0xa}, {0x7, 0x7}, {0x1, 0x4}, {0x0, 0x5}, {0x1, 0x6}, {0x1, 0x1}, {0x5, 0x2}, {0x1, 0x3}, {0x0, 0x6}, {0x0, 0x9}, {0x0, 0x4}, {0x0, 0x1}, {0x2, 0x9}, {0x3, 0x9}, {0x3, 0x4}, {0x4, 0x6}, {0x7, 0x3}, {0x0, 0xa}, {0x7, 0x9}, {0x5, 0x9}, {0x0, 0x2}, {0x1, 0x9}, {0x7}, {0x5, 0x6}, {0x5, 0x6}, {0x4, 0x7}, {0x4}, {0x4, 0xa}, {0x4, 0x3}, {0x7, 0x7}, {0x1, 0x6}, {0x2, 0xa}, {}, {0x1, 0x9}, {0x4, 0x5}, {0x3, 0x8}, {0x3, 0x1}, {0x3, 0xa}, {0x7, 0xa}, {0x5, 0x8}, {0x6, 0x2}, {0x2, 0x4}, {0x3, 0x3}, {0x2, 0x8}, {0x7, 0x5}, {0x3, 0xa}, {0x0, 0x6}, {0x4, 0x4}, {0x0, 0x4}, {0x1, 0x3}, {0x5, 0x9}, {0x6, 0x8}, {0x4, 0xa}, {0x1, 0x8}, {0x3}, {0x1, 0x8}, {0x5, 0x6}]}]}, @NL80211_BAND_5GHZ={0xa0, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x3c, 0x2, [{0x1, 0x4}, {0x5, 0x7}, {0x0, 0x3}, {0x5, 0x3}, {0x6, 0x6}, {0x1, 0x8}, {0x1, 0x5}, {0x5, 0x8}, {0x6, 0x5}, {0x4, 0xa}, {0x1, 0x7}, {0x0, 0x9}, {0x1, 0x9}, {0x2, 0x6}, {0x2, 0xa}, {0x2, 0x2}, {0x1, 0x4}, {0x1, 0x2}, {0x4, 0x1}, {0x6}, {0x3, 0x4}, {0x3, 0x6}, {0x0, 0x6}, {0x0, 0x1}, {0x3, 0x7}, {0x6, 0x4}, {0x4, 0x4}, {0x3, 0xa}, {0x7, 0x2}, {0x0, 0xa}, {0x1, 0x8}, {0x5, 0x2}, {0x0, 0xa}, {0x6, 0x8}, {0x7, 0x1}, {0x1, 0x2}, {0x3, 0xa}, {0x4, 0x8}, {0x1, 0x6}, {0x4, 0x5}, {0x6, 0x1}, {0x4, 0x5}, {0x5, 0x9}, {0x5, 0x3}, {0x5, 0x1}, {0x5, 0x4}, {0x3, 0x3}, {0x0, 0xa}, {0x0, 0x6}, {0x6, 0x6}, {0x4, 0x5}, {0x6, 0x5}, {0x4, 0x6}, {0x7, 0x5}, {0x5, 0x4}, {0x2, 0x9}]}, @NL80211_TXRATE_HT={0x38, 0x2, [{0x1, 0x5}, {0x2}, {0x2, 0x5}, {0x6, 0x3}, {0x7, 0x2}, {0x6, 0xa}, {0x3, 0x3}, {0x1, 0x4}, {0x7, 0x3}, {0x5, 0x3}, {0x6, 0x3}, {0x4, 0x6}, {0x3, 0x7}, {0x2, 0x8}, {0x6, 0x4}, {0x2, 0x6}, {0x3, 0x2}, {0x0, 0x5}, {0x0, 0x8}, {0x5, 0x7}, {0x0, 0x4}, {0x5, 0xa}, {0x7, 0x3}, {}, {0x4, 0x7}, {0x7}, {0x0, 0x9}, {0x5, 0x6}, {0x4, 0x7}, {0x1, 0x8}, {0x5, 0x4}, {0x4, 0x8}, {0x4, 0x9}, {0x4, 0x6}, {0x7, 0x1}, {0x7, 0x2}, {0x0, 0x4}, {0x7, 0x3}, {0x2, 0x7}, {0x1, 0x3}, {0x3, 0x2}, {0x4, 0x3}, {}, {0x6, 0x5}, {0x4, 0x3}, {0x3, 0x5}, {0x2, 0x5}, {0x7, 0x4}, {0x1, 0x3}, {0x5, 0x4}, {0x5, 0x3}, {0x7, 0x7}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x1, 0x5, 0x9, 0x7ff, 0x6, 0x401, 0x7fff]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2e6, 0x5, 0x2, 0x0, 0x6, 0x0, 0x0, 0x200]}}]}]}, @NL80211_ATTR_TX_RATES={0x1bc, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0xb4, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x11, 0x1, [0x5, 0x0, 0x37, 0x2, 0x48, 0x6c, 0x5, 0x18, 0x24, 0x1b, 0x6, 0xb, 0x30]}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x6c, 0x12]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x19, 0x1, [0x6c, 0x60, 0x60, 0x36, 0x9f5e3d5476ce37c1, 0x6c, 0x30, 0x18, 0x48, 0x30, 0x5, 0x6, 0xc, 0x60, 0x2, 0x4, 0x48, 0x2, 0x30, 0xc, 0x12]}, @NL80211_TXRATE_LEGACY={0x13, 0x1, [0xb, 0x36, 0x9, 0x0, 0x24, 0x60, 0x4, 0xb, 0x30, 0x18, 0x6, 0xb, 0x6c, 0x2, 0x5]}, @NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x60, 0x6, 0x12, 0x9, 0x36, 0x1b, 0x16, 0x12, 0x6c, 0x0, 0x18, 0x18, 0x9, 0x4, 0x3, 0x1, 0x36, 0x5b, 0x18, 0x12, 0x36, 0xc, 0x30]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x80c5, 0x96, 0x1000, 0xffff, 0x1000, 0x4, 0x4e13]}}, @NL80211_TXRATE_HT={0xc, 0x2, [{0x5, 0x2}, {0x2}, {0x7, 0x5}, {0x1, 0x2}, {0x1, 0x4}, {0x7, 0x6}, {0x5, 0x8}, {0x1, 0x9}]}, @NL80211_TXRATE_HT={0x18, 0x2, [{0x5, 0x1}, {0x1, 0xa}, {0x7, 0x5}, {0x2, 0x3}, {0x0, 0x2}, {0x6, 0x3}, {0x6, 0x5}, {0x1, 0x1}, {0x3, 0x4}, {0x2, 0x4}, {0x6, 0xa}, {0x7, 0x6}, {0x7, 0x6}, {0x2, 0x4}, {0x1, 0x4}, {0x3, 0x6}, {0x7, 0x3}, {0x4, 0x2}, {0x0, 0x6}, {0x5, 0x1}]}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_60GHZ={0x60, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x600, 0xfff7, 0x1, 0x6, 0xa50c, 0x7, 0x8, 0x4]}}, @NL80211_TXRATE_HT={0x29, 0x2, [{0x4, 0x6}, {0x3, 0x9}, {0x0, 0x1}, {0x7}, {0x5, 0x5}, {0x6, 0x8}, {0x5, 0x9}, {0x0, 0xa}, {0x3, 0x7}, {0x4, 0x4}, {0x2, 0x6}, {0x4, 0x5}, {0x4, 0x4}, {0x6, 0x8}, {0x4, 0x2}, {0x2, 0x3}, {0x6, 0x1}, {0x0, 0x2}, {0x5, 0xa}, {0x2, 0x7}, {0x5}, {0x7, 0x3}, {0x4, 0x8}, {0x4, 0x7}, {0x5, 0x6}, {0x6, 0x5}, {0x6, 0x2}, {0x7, 0x1}, {0x5, 0x18}, {0x6, 0x6}, {0x6, 0x9}, {0x7, 0xa}, {0x7, 0x7}, {0x5, 0x6}, {0x3}, {0x3, 0x8}, {0x4, 0x4}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0xeb6, 0x9, 0x8, 0xa696, 0xeeed, 0x7, 0x8000]}}]}, @NL80211_BAND_2GHZ={0x2c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xff, 0x800, 0x5, 0x8, 0x6, 0x8, 0xef07, 0x1]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x80, 0x1, 0x1, 0x544a, 0x8, 0x133c, 0x9, 0x6]}}]}, @NL80211_BAND_6GHZ={0x6c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x17, 0x2, [{0x4, 0x4}, {0x6, 0x5}, {0x2, 0x3}, {0x2, 0x6}, {0x0, 0x2}, {0x0, 0x4}, {0x4, 0x8}, {0x0, 0x1}, {0x4, 0xa}, {0x1}, {0x5}, {0x4, 0x6}, {0x0, 0x4}, {0x2}, {0x4, 0x9}, {0x6, 0xa}, {0x5, 0x4}, {0x5, 0x5}, {0x2, 0x1}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x10, 0x2, [{0x4, 0x9}, {0x7, 0x9}, {0x7, 0x9}, {0x7, 0x1}, {0x1, 0x6}, {0x5, 0x1}, {}, {0x3, 0x4}, {0x0, 0x3}, {0x5, 0xa}, {0x3}, {0x1, 0x5}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0xff, 0x4, 0x9, 0x5, 0x7fff, 0x7, 0xfffd]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1ff, 0x401, 0x7, 0x2, 0xfff7, 0x1, 0x1, 0x2]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_6GHZ={0xc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}]}]}, 0x36c}, 0x1, 0x0, 0x0, 0x40004}, 0x4000000)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000b80)={{0x1, 0x1, 0x18, <r5=>r0}, './file0\x00'})
setsockopt$inet6_mtu(r5, 0x29, 0x17, &(0x7f0000000bc0)=0x4, 0x4)
r6 = syz_open_dev$mouse(&(0x7f0000000c00), 0x7, 0x202)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c80), r1)
sendmsg$NL80211_CMD_SET_POWER_SAVE(r6, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x40, r7, 0x200, 0x70bd25, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0xc4a, 0x59}}}}, [@NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)
ioctl$EXT4_IOC_MIGRATE(r5, 0x6609)
io_setup(0x7fffffff, &(0x7f0000000d80)=<r8=>0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0xc020f509, &(0x7f0000000f40)={<r9=>r5, 0x8c60, 0x5dd, 0x800})
r10 = socket$netlink(0x10, 0x3, 0xf)
io_submit(r8, 0x4, &(0x7f00000010c0)=[&(0x7f0000000e80)={0x0, 0x0, 0x0, 0x6, 0x7, r6, &(0x7f0000000dc0)="5a5d1f8780302537838596b5242ef81626b412ffbcaa4eaf94bd128a52b4aafa3a50306d424eadace92787075ef8bb7c3cc6f4b1536353fb05f55c3f68b4d6c288ff9bbd5d90cc74c7b149d95287fc4abdfe4c54fe4b89283cdb5d5c0bbbd7eba9bac857e6990f673f0ed914f4707a989d73e4d89e2c4025100794d2e57b2c1eb2474220b9c84f75a7959e9109ddbe6a542c9acc997a88a3da464198ecc1fe32c2c496694a996ef8702eb15a2302da166cc7a6b3", 0xb4, 0xd5ca, 0x0, 0x1, r1}, &(0x7f0000000f80)={0x0, 0x0, 0x0, 0x2, 0xffff, r5, &(0x7f0000000ec0)="0c934e231ed564f2fd3cb6308003503339b133e337cf2a6b1b9dc7ada8f98a38408975170f8181c18f84de461923e02e61574ba212b16d6d92e0699050280c620f04", 0x42, 0x1, 0x0, 0x3, r9}, &(0x7f0000001000)={0x0, 0x0, 0x0, 0x1, 0x100, r6, &(0x7f0000000fc0)="c74394341268c071e36caa216c8f2cb8a74539c7", 0x14, 0xffffffffffffffff}, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x5, 0xfe00, r10, &(0x7f0000001040)="8c0c6797189ed1e7e782615f535b6ba52ef43699757f2f79d6bdb126f2623870ac896cfc8c85db46fd728c563fed", 0x2e, 0x19b6, 0x0, 0x3, r5}])

09:43:15 executing program 0:
r0 = socket$inet6(0xa, 0x1, 0x1)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), &(0x7f0000000040)={0x0, 0xfb, 0x111, 0x2, 0x0, "9a85401f3a35a97555ae1f4a800245d4", "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"}, 0x111, 0x2)
setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f0000000180)={0x0, {{0xa, 0x4e24, 0x3, @loopback, 0x1f}}}, 0x88)
ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000240), 0x200, 0xa000)
recvfrom$inet6(r1, &(0x7f0000000280)=""/91, 0x5b, 0x35928d984fc4ae0f, &(0x7f0000000300)={0xa, 0x4e23, 0x5, @remote, 0xb890}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x3, &(0x7f0000000340)=0x3, 0x4)
ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0x0)
close(r1)
getsockopt$inet6_mreq(r1, 0x29, 0x14, &(0x7f0000000380)={@ipv4={""/10, ""/2, @private}}, &(0x7f00000003c0)=0x14)
ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x80189439, &(0x7f0000000400))
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x200900, 0x0)
ioctl$BLKRAGET(r2, 0x1263, &(0x7f0000000480))
bind(0xffffffffffffffff, &(0x7f00000004c0)=@l2={0x1f, 0x3, @any, 0x9}, 0x80)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000540)={0x80000000, 0xce7, 0x4, 0x3, 0x7, [{0x7ff, 0xb3, 0x8001, '\x00', 0x201}, {0xfffffffffffffffd, 0x8, 0x300000000, '\x00', 0x80}, {0x3ff, 0x2d4, 0xff, '\x00', 0x1001}, {0x7, 0x101, 0x6a950985, '\x00', 0x1}, {0xfff, 0xfffffffffffffd9d, 0x9, '\x00', 0x100}, {0x49a, 0x10001, 0x50000000}, {0x6, 0x8, 0xd5, '\x00', 0x1009}]})
ioctl$CDROMREADAUDIO(r1, 0x530e, &(0x7f0000000740)={@lba=0x2000000, 0x2, 0xc, &(0x7f0000000700)=""/12})
getsockopt$inet6_int(r1, 0x29, 0x4, &(0x7f0000000780), &(0x7f00000007c0)=0x4)
preadv2(r0, &(0x7f0000000d00)=[{&(0x7f0000000800)=""/72, 0x48}, {&(0x7f0000000880)=""/2, 0x2}, {&(0x7f00000008c0)=""/229, 0xe5}, {&(0x7f00000009c0)=""/211, 0xd3}, {&(0x7f0000000ac0)=""/220, 0xdc}, {&(0x7f0000000bc0)=""/55, 0x37}, {&(0x7f0000000c00)=""/255, 0xff}], 0x7, 0x8000, 0x2, 0xd)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000d80), 0x6000, 0x0)
ioctl$SG_GET_LOW_DMA(r3, 0x227a, &(0x7f0000000dc0))

09:43:15 executing program 3:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r0, 0xc038943b, &(0x7f0000000040)={0x2, 0x20, '\x00', 0x0, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0]})
r1 = signalfd(r0, &(0x7f0000000080)={[0x7f]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r0, {<r3=>r0}}, '.\x00'})
io_submit(0x0, 0x1, &(0x7f0000000200)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x5, 0x400, r3, &(0x7f0000000100)="d0e945d1878e6c15fc734bdc378387022346c9efca63a51993caea03039957302856366115f47acf8e063f740dbc4e9a1a764212806b0da549ce9baea02d8600874c7cb2debe7fbca11c24676f2159fca0768a74ef19d96faec8f5a3b3cac2f6320f8f8782732093c09ab9ca73656354ed6aa12cbe777b9511d0e1e98e57475dfdeaba66dcac6841d9603fda43d91f0d32", 0x91, 0x400, 0x0, 0x2, r1}])
close_range(r2, r3, 0x2)
r4 = pidfd_getfd(r3, r0, 0x0)
ioctl$CDROM_SEND_PACKET(r4, 0x5393, &(0x7f0000000300)={"24c6cdf843fa45dcb6a374d2", &(0x7f0000000240)="41777d3537e263a7f93b906775db5b1465d87d000453073073f3577c4ad43d81", 0x20, 0x9, &(0x7f0000000280)={0x0, 0x0, 0x8, 0x3, 0x0, 0x0, 0x0, "9d048341", 0x2, "a34a9f93", 0x8, 0x6, 0xd0, "5c6690", "dfb253baf058ca3135a024fade28df81acba5b934f934afbf77ed95935b3f60c44ef4396c69093d0a089500719b6"}, 0x2, 0x5, 0x3, &(0x7f00000002c0)})
socketpair(0x27, 0x2, 0x36, &(0x7f0000000340)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = dup2(r4, r5)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000380)={{0x1, 0x1, 0x18, <r7=>r0, {0x7, 0x6}}, './file0\x00'})
r8 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000003c0), 0x22000, 0x0)
pidfd_getfd(r7, r8, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000400)={0x2, 0x4e21, @rand_addr=0x64010100}, 0x10)
r9 = accept$packet(r1, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000480)=0x14)
fchmod(r9, 0x20)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000540)=<r10=>0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r6, 0xc018937b, &(0x7f0000000580)={{0x1, 0x1, 0x18, <r11=>r9, {0xee01, 0xffffffffffffffff}}, './file0\x00'})
r12 = perf_event_open(&(0x7f00000004c0)={0x4, 0x80, 0xa0, 0x1, 0xff, 0x40, 0x0, 0x780, 0x8, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0xffffffffffffffff, 0x7}, 0x20, 0x9, 0x0, 0x1, 0xeff3, 0x80, 0x1000, 0x0, 0x6, 0x0, 0x3ff}, r10, 0x8, r11, 0x2)
preadv2(r12, &(0x7f0000000ac0)=[{&(0x7f00000005c0)=""/16, 0x10}, {&(0x7f0000000600)=""/71, 0x47}, {&(0x7f0000000680)=""/189, 0xbd}, {&(0x7f0000000740)=""/52, 0x34}, {&(0x7f0000000780)=""/132, 0x84}, {&(0x7f0000000840)}, {&(0x7f0000000880)=""/230, 0xe6}, {&(0x7f0000000980)=""/154, 0x9a}, {&(0x7f0000000a40)=""/104, 0x68}], 0x9, 0x7, 0x3f, 0x1)

09:43:15 executing program 5:
sendmsg$IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xb4, 0x0, 0x8, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_DEST={0x34, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x101}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xe9e}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7fffffff}, @IPVS_DEST_ATTR_L_THRESH={0x8}]}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wrr\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x47}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xcc4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}]}, 0xb4}, 0x1, 0x0, 0x0, 0x20000080}, 0x48040)
sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @local}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @remote}]}, 0x38}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ASSOCIATE_RESP(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x30, 0x0, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_STATUS={0x5, 0x3, 0x9}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x4060000)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000380)={'wpan3\x00'})
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000003c0), r2)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000400), 0x200000, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r3, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x20, r4, 0x400, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xf4b, 0x47}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x8058}, 0x20000010)
sendmsg$NL80211_CMD_GET_INTERFACE(r3, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, r4, 0x400, 0x70bd28, 0x25dfdbff, {{}, {@void, @void}}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x4)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r3, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x2c, r4, 0x4, 0x70bd29, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3ff, 0x62}}}}, [@NL80211_ATTR_IE={0xc, 0x2a, [@mesh_id={0x72, 0x6}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000874)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r2, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x20, 0x70bd2c, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8840}, 0x810)
ioctl$IOC_PR_RELEASE(r3, 0x401070ca, &(0x7f0000000880)={0x24000, 0x6, 0x1})
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000900), r2)
sendmsg$NL802154_CMD_NEW_INTERFACE(r1, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x20, r5, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x20}, 0x1, 0x0, 0x0, 0x5840}, 0x20000800)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000a40), r0)
sendmsg$IEEE802154_LLSEC_LIST_DEV(r1, &(0x7f0000000b00)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x14, r6, 0x100, 0x70bd27, 0x25dfdbff, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x8080}, 0x5)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x1c, r4, 0x200, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x8810}, 0x10004040)

09:43:15 executing program 6:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
fgetxattr(r0, &(0x7f0000000000)=@known='system.posix_acl_default\x00', &(0x7f0000000040)=""/137, 0x89)
r1 = fspick(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x1)
r2 = signalfd4(r0, &(0x7f0000000140)={[0xc77]}, 0x8, 0x0)
r3 = openat$incfs(r0, &(0x7f0000000180)='.pending_reads\x00', 0x400000, 0x4)
ioctl$sock_bt_hci(r3, 0x800448f0, &(0x7f00000001c0)="deb0bd9ff96b754332bfdd3735c02beb28fd47ea6f0a6476fdb83e6fe62a430bac84b2f7ea353820dfa95cff896313f166a320b854974cc1bd77bc86cacec6d8d0ae239b127f464e846004ff3d1cf4161de4d803357a1a23f1f40508254e2f315acfe375446a421fdfe7c7e41a67838dff219224cd2ae71770d3006b002fb604e545fd7074ea845d07d17303")
r4 = openat$incfs(r3, &(0x7f0000000300)='.log\x00', 0x2100, 0x20)
mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x6010, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@fscache}, {@debug={'debug', 0x3d, 0x132}}, {@mmap}, {@dfltgid={'dfltgid', 0x3d, 0xee00}}, {@privport}, {@loose}, {@mmap}, {@cache_none}, {@cache_none}], [{@dont_measure}, {@obj_type={'obj_type', 0x3d, '(%\\'}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}]}})
ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f0000000440))
r5 = creat(&(0x7f0000000480)='./file0\x00', 0x100)
ioctl$TIOCSBRK(r5, 0x5427)
unlink(&(0x7f00000004c0)='./file0\x00')
r6 = epoll_create(0xc00)
r7 = dup2(r4, r6)
fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000500)=0x6)
creat(&(0x7f0000000540)='./file0\x00', 0x10)
setsockopt$bt_BT_DEFER_SETUP(r7, 0x112, 0x7, &(0x7f0000000580), 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r8=>0x0, 0x8c, 0x7fffffff, 0x7, 0xfff, 0x6, 0x4, 0x6, 0xff, 0x80, 0x0, 0x4, 0x7fff, 0x8001, 0x9}, 0x40, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000000680)={{r8, 0x9, 0x10001, 0xfff, 0x7f, 0x126, 0x1, 0x4, 0x8000, 0xffffffff, 0x1, 0x200, 0x8, 0x3, 0x3f}})
ioctl$BTRFS_IOC_START_SYNC(r7, 0x80089418, &(0x7f0000001680))

[   93.864773] audit: type=1400 audit(1763199796.006:7): avc:  denied  { execmem } for  pid=275 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
09:43:16 executing program 4:
r0 = syz_mount_image$nfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3ff, 0x3, &(0x7f0000000380)=[{&(0x7f0000000080)="07c9d410262126af3b39622cbdde936bacd06176ef25e2aef2be7cdcc9e33f211cdaa6cea69f13eec914abaa4b430f7e5a8e1ffb713173aee57e4e8d67a98fafa6601b1686803135ebab1a8e92b22e891cdfc48a6c918488c1defbc5ed676ae264d826dfec0fac7e4df81d937041ac4a3dad46a31126b42804a98163f5966b8358915884825796be1d24b71aad43240b48ab59a11e036d49548b7bab4ab75bbb784ac999baec9db984dc132c90d9dc46bc4b286298580183fcbe60721ecb8a72b17f5f939ff0501a5f95c0c371a9cd769fcd7f5bd9e03c0dcc2b04a228e5febeed100143281adf669291ac", 0xeb, 0x9}, {&(0x7f0000000180)="7facf03c085ab72d957fbc7250525efddc149c53673144c7ca097cc2c144c2a421ee341843ee18b59e425d5af91a4669b88074b47e52c5ffc4ed9f78e810eccab97f4565eac5f29eb66eb7889e1b9177e26fb7c9947d84bc983849be8f8e5a8359361fe665caf45e6ab2135e2902018721db3266a55ccc3a6a4438a684cff325de77eab557ec57a808eba7548430e1ecdbfc2b91a4accfd6b42fe1aee1c7c44c38305428c4315dae9c9236601a4a3e6ae6c0de69bb75e09e039745a9c606fb9c5546fdf8b19dff", 0xc7, 0xef35}, {&(0x7f0000000280)="0e0f4b4c2e9a0528c680f99a932e00d4171c9c2e09508005651ef3a15c19bb8467436895fe1856d1b2746bcfce7372ea2d46ed6efd6a31d5fe00f37b6e9841709ae208fecfe7aa9b2752b6317db952e6d0f8c832ac2da5d31bddf1a3e04d04374b9407a17e8259f3df2b72207d5d11c48680a77f4916d8cca09fb974fc3a77046e78e67cfe50b8870e90113e55ee2cc5ab602a1b620f79ffaf35a997572f9480574595a003568b2791a6c9d5d263fd11011414971a4817332778c7a1a99af38417fea420000252532eb6d3de", 0xcc, 0x1}], 0x2202402, &(0x7f0000000400)={[{'&'}, {'##'}], [{@audit}, {@seclabel}, {@subj_role={'subj_role', 0x3d, 'U:\x1b'}}, {@seclabel}, {@audit}, {@uid_gt={'uid>', 0xee00}}]})
r1 = open_tree(r0, &(0x7f0000000480)='./file0\x00', 0x800)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r2=>r0, {0x6}}, './file0\x00'})
pwrite64(r2, &(0x7f0000000500)="1a980d2cd6cbff714a1097c1afda46b0c796fbdac99c6504bc2f5ac967b2c467b1dc4cf1d6201228c86cf0177de85490715fa9dd1887a2d4cc832581d8ddea5f307fa139df66e63a10f669044ed95a433c7ce6684177d39ea993cf75fa5ee26f3b3102c91813926ee22c19f5c271796c3b791ec9999b33ad56a299e8828ac1103f8be471c57f67da97de35b6ac1089b46c631a38ea02c396beb6700adccdd26456a0709f15c21cc347c456adda67feb70b821681a4154f520f472b508d6e67ecbe4adf26b8f7bfbeb7bd209c97837e804fbc9967f6ac95cda79d09c26f6e5c892ab224", 0xe3, 0x7)
pread64(r1, &(0x7f0000000600)=""/199, 0xc7, 0xfffffffffb38e088)
r3 = syz_mount_image$tmpfs(&(0x7f0000000700), &(0x7f0000000740)='./file1\x00', 0x40, 0xa, &(0x7f0000000e40)=[{&(0x7f0000000780)="4a4f142b806fde0a", 0x8, 0xe44}, {&(0x7f00000007c0)="04280bd06209e914e8949fc2582149614c5895b2b1630e724e1b7849725535718ab1aa2de41121801ca0ec2354d8f644adb8d3a369ce80ccd4e4a541cb67044254c9db7eed804a4975a286542ff7c7b09060288d18d3c1e1463e9b880035d3b3155aba40b0695da03db230b0967814f4ab3e6d50506bf16dffb1f070aad656658586eee36788b0d17ec1e6773e7f9aed0b285283651cff40de7ed3c0c306e283ff56e7a0036dc73ab653a99a6fbdf6", 0xaf, 0x8}, {&(0x7f0000000880)="3bcd8fd907cef148155f24271a4341b1659acd95cffaf13779424d1a8a11ff52c8eb229a258bc6b750072722a70123cd8b0ba0bcb1a51e9905789bfd6b9a85c7fc36c09e49bf140fb8d67af24dfcb033b49b86fd1d1510a342c5eddb500aeb55cc2164de449dbd17534db379444735dd12e92ca1dce276bbdf5fadd86665076de6af3c3d1aafc3dee62728c750e0d040997f3e1ff53c037a424bf21b5fd758b61cb04e32d2e01d97a98c18423d757feef4d3090eab8c9f7e1e274486ba641ec8f10074093555316e55fe53dcbd0e8a2fd1d8a810a75a74f9afb0a8c102d44ca8", 0xe0, 0x2}, {&(0x7f0000000980)="38dd7d5d4759554c7e2f91aec1abedb685775cf03acf05699c09fae80df64282f147b86783c5342c2160a2a726b73c859d589e13908a347b2bb429318b4c4004cd054ca7a3bbfab11415e4af695e7c38a01f4ebf33a5bd82c8e3db5db004ddf5ab076c6459484bc03ebfbbf4775c695bab923657caafe763a7e049692e9a26d880119f4e188e753498ec3b288b88237c67b74d1551de614ee2cdf22294903083051fb3c8520bddff4bb1311c97612bb80e2dfa52a9362eeaf6c8017f3814af5221294673feecc2e141ca0544edf42b0167f8f6e5adf4eed98d6143ef82571de2d4efa9d8eeb49e753f490ea061", 0xed, 0x6}, {&(0x7f0000000a80)="268027dd0afca6bc4d5172c2793c047a843fef5596f27626f57c84adb5e86edd86d471290e5f75cf4a49ac2389398cb6aa7b806ec73d46ad18bd8cba96e5f3f6d4d3159f1e8f5f5398966213db03dd240274f2bd2cfc32eb17038abf9ebb1174f9272116b055f363832a22821b241ea5a6d3a82b4a029a2f074a739aec024ca6b514a42bfc0b4e94fc464db2700ab65e710df198c942addf39288b5e52c25ebad82a8dc7fc840fd64e164fdbcc6edf70bc52012edaed", 0xb6, 0x2896}, {&(0x7f0000000b40)="ed91a5fb8271cf6657753a70e5a7eca0a5e7629e924ffe9c4d255295e61722c409d817ad622fe3888bb24255b4ab6f2af52acbeb", 0x34, 0x2}, {&(0x7f0000000b80)="c1349c813f53bb0c5cef854bba10f068144fdbca07075168768a3bc5b28954ed04c42f20d95c97a5724740a8f9d6991b564101b11afb54601de269847bd6e82a41b07d13710e994960c7b250e26eeefb109539cfb4e35e4571f6376ffaf20b5bc28cab9f27d7c19abdb06c5b40cef0c29d1b1858ce4f74a0464203b40e71e1a8f978145975ab3c443544eba72549cc64e2a56acf6ce941c68b9eb2754c39cbeb0b0f1e47e9a6881c4cf273392b7a2c59639e6a0275d2dba2dce0337935ca4feffb1b2e13157ad5c911b54b1eb3b12f5bd1f6e213f97faecf", 0xd8, 0x2}, {&(0x7f0000000c80)="20cca73c729c88098e42e8fb7e99c326a564343430b0393d7004e98bbb6cac081afaa3c9fd4d8b440d99de992276fbe8d3f875fcef8d1c5207bd8d0c1dade5c8ff960ea2840036f24731770973da61dc76164b382d0d9c3dd970778c2e9c24d701144c26afa508d4e1c261d1ebdc98b9bd19eb896cc70f84d9926f68137d6d9c17af134c5f4fdbc0684118b384c16db48498c70630de162d578d33d661d8c57ba5ab0cf99e2d407882ffbb124efdba946ae1", 0xb2, 0x3848}, {&(0x7f0000000d40), 0x0, 0x7fff}, {&(0x7f0000000d80)="81896055eaf24a0cae4ca6eee83320bcdc63b5197fdd8b3cb639cb147513642a97e98bf7cf43b7a3584c6b1419c0d4e6bda61fccace45269264b1c5e1d9d97289eaaaadbb34c732f7882232b8305ae7f8d20d3d1efc835a625217868c3ef0d5a3d0139f414c0dad2bb87d489da1386504fba1efa078d6d5b25c57251b22630dc1ec14e892e5c7274222039e43efb422ae79891d98176a6c100b4715c2e6efc36e6b3eb", 0xa3, 0xfffffffffffffffe}], 0x2140020, &(0x7f0000000f40)={[{@huge_within_size}, {@nr_inodes={'nr_inodes', 0x3d, [0x67]}}], [{@dont_appraise}, {@audit}, {@dont_appraise}]})
r4 = openat2(r2, &(0x7f0000000f80)='./file0\x00', &(0x7f0000000fc0)={0x101880, 0x80, 0x14}, 0x18)
sendmsg$IPCTNL_MSG_CT_DELETE(r4, &(0x7f00000010c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)={0x28, 0x2, 0x1, 0x5, 0x0, 0x0, {0x2}, [@CTA_SEQ_ADJ_ORIG={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x200}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x199bcb3b}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x844}, 0x44010)
mknodat(r3, &(0x7f0000001100)='./file0\x00', 0x8, 0x100)
r5 = syz_mount_image$ext4(&(0x7f0000001140)='ext2\x00', &(0x7f0000001180)='./file1\x00', 0x4, 0xa, &(0x7f0000002980)=[{&(0x7f00000011c0)="f5a422ab82f0b7ed29012518ccd34626411f8b81966834c620af8aee2506001787432743ece020b097ca3476db7ad5ff0f69e7a618a6915e1e367457b8d4c75cc7c1c16961d07fbc09dce9dd6c9ef172bd99397e69f0eea5fae5138ad96dd4366808ed6d6cbe080fde8a59e875aefcf0b8c7e98c710480f5f57cca4f2d172bfc78f40f73f51e0e5c631b6f6263", 0x8d, 0x20}, {&(0x7f0000001280)="a4cb62b05248d1e9344849410e6a5d2945e2f42ce36908130a111b5af29ca2d638cb677124d504543be7b3e3d4d324e4e0ccfb222b2037ebe049820dbdefe1cd12e8482b9927855756bbb8bda099d5035d07908a0acaba213ad93547f8a05276666a87cbb7bdc3eda3cf65aae99e93fa2937f0fbc9c1d7ad5ee0314df18dbf9cb18bd3e7a745e578b8988f676ba7dfb305cbefbe5a34c9d952734600c54b6e70e6ce2f25eb0847cb420aa5348b5f0fdb959eb95c37ad4bcc94a12f824996f23ce406", 0xc2, 0x135}, {&(0x7f0000001380)="5eabcf1c171f8218a6611308c947aa8a292651aab94b3ac523eac1f624a2b2b97b5be8a0737d2bdb2fb58bce7240b5c75b3d29b4da5f0133ef2fbab43ed3a5c7975897b52f6d8be5cc3310e9a4576db717bed1e807984a95701a5c85f1701f31b4abe56abe1858dd2dc474d1300b1f25c4a6bbd1a1f3667cc3c185a02b6d6e69f2940b4067b3b6b66a14f3b9222b2d0b6bb59258a8ad2992510621477b27164d5207d3edffc1610442d72249c8c1289323c186c1c80bea8e32f88fd332b009b64d3770e80fe70af7ea83aa9dcbc334c5f39968a7a00e4d5922917d5702eb1f416453", 0xe2}, {&(0x7f0000001480)="59ce8bf436ba79b31076e2a2fa7fee3d15c874598a46512ecc86a9290e08337162db1e9b6d7e5964f41304e237cf0d06cc681320518ad2cd1606725a51166f3bfe6597f5340c995f94027afe91b49f32e889532a39027731bd0da871e43bea115cceac27fb6cdf460049865b29529f6fa6a0e5200c605a24837dd9f8e523a37ee5c95876aa3709bd26b0665fb395222d5bdba0cda8002e99bac5c92d050fd6df27b9bcf548934c0ef156af0cca6309fe3cfe28026b6d3b76c8ded83b9dd90dfc59192b58978208eaf5dd0bb8663286", 0xcf, 0x81}, {&(0x7f0000001580)="47a5668dc32d15af69e4701cb4bdc7a52f0583d05712a41f6fda01598380d45fc89cc6ae31995824ddb2b831383318e1b7cae422c2a1daf49246715b5ae0a318470b9f1992f648b014c326558bd837deed693835fdf5af7857da94b62bd4e90143a719d0d1f6", 0x66, 0x1}, {&(0x7f0000001600)="1d3c86ec418a76027782caa7a19b6998f96f709819b7eeec4d7eb41ef559bc4b0e23f9f2af7f3cd2f2e9d1fa0bf5decb8a161d60a5dd41f80083ae6a2dca978981762e372533aa468e3fdceefb2863b3", 0x50, 0xffff}, {&(0x7f0000001680)="b8294de083705b6bc26ea0282f38ff069adbf7909b102ba5a5a6861d98af303c0f25a37f6f2385fa47b1e67185334a2858df0a9b78c837b4cf5f9b241044604a4e185c6a4fa26aa32219475af440f0d7340a0fde8b1daf5cb0706d37870e7db81329fd2d868feb8af2204573d8c4ea5e46242ee04886851fb4a4c9a684c7e4b217dc0f3384ee04649e08d3ab0420284140e7f5d75f41266e4fd5781f40f4e03323f4a657ebf1c8836aeb48281d2b19bbbf28a8a5a7a8b6a49cf4c1c264c1455b450ebede5b141ca96f51129298a62b0115f30ea83babea18", 0xd8, 0xffffffffffff02ed}, {&(0x7f0000001780)="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", 0x1000}, {&(0x7f0000002780)="b213d7fefd36ccc4ef6815dabb833ed71b4f353be49f1d526623de4a82d35a8a712390cb16b0e662fb0713dbd5a1a6608ffcab25a7cc8f6e9deb2ec3e2d0f6ed4b98d3aa328a132c58ed5901a6b9b55a6d8e04142bc18c60c32ae85949f559c027487c1fb5f3b67d7cc006d78861eff443620efdd3254f73379270f7a4ede31baf2d1b8057eda4d300ba726751526bebe64623041fc6ca82f0bba524b157debba43ca69c7badcb5696e9c6532f32543cd223dfe6604c68a161509550fd06a6b1bb38781d28dc9cec5a3f017a", 0xcc, 0x2}, {&(0x7f0000002880)="4eb6278b8df5c3156e4fb225cbf8437bba740e218d3463b7ce248d8cec6555d3799e6a35ec453bc7b5eec0386de3773a28f6b013809289557a8ffe8abe15393f5a60b61911570fa20201c9abf3edbca2a2977c88d7105be70315f6a9a39f467413663a76b7b19b050e323098fe25529676515fc0d0deacae9f24cb70965760294bfaa69a19bb2a27ccd3ef14be7a17055d967f53cc1de72992c16546373cd4590c134c5078ec44a7eafbdb92d77411d911e17c4d90362a3e8da843516dd7a17e56fe7fab523e4f90103e064f870897f297c6f3e34d09dfe7a26dbe02e280bae8bcfc4424e1", 0xe5, 0x7}], 0x0, &(0x7f0000002a80)={[{@resgid={'resgid', 0x3d, 0xffffffffffffffff}}, {@resuid={'resuid', 0x3d, 0xee01}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x8}}, {@test_dummy_encryption}, {@dioread_lock}, {@nolazytime}, {@nodelalloc}, {@sysvgroups}], [{@hash}, {@obj_role={'obj_role', 0x3d, 'U:\x1b'}}, {@pcr={'pcr', 0x3d, 0x27}}, {@permit_directio}, {@uid_lt={'uid<', 0xee00}}]})
syncfs(r5)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000002b80)={'veth1_to_bridge\x00', <r7=>0x0})
renameat(r5, &(0x7f0000002bc0)='./file1\x00', r5, &(0x7f0000002c00)='./file1/file0\x00')
r8 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000002c40)=[r5, r4, r4, r8, r5], 0x5)
getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000002d00)={{{@in6=@mcast2, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0, <r10=>0x0}}, {{@in=@multicast2}, 0x0, @in6=@mcast1}}, &(0x7f0000002e00)=0xe8)
getresuid(&(0x7f0000002e40), &(0x7f0000002e80)=<r11=>0x0, &(0x7f0000002ec0))
lsetxattr$system_posix_acl(&(0x7f0000002c80)='./file1\x00', &(0x7f0000002cc0)='system.posix_acl_default\x00', &(0x7f0000002f00)={{}, {0x1, 0x5}, [{0x2, 0x6, 0xffffffffffffffff}, {0x2, 0x6, 0xee00}, {0x2, 0x1, 0xffffffffffffffff}, {0x2, 0x4, r10}, {0x2, 0x7, r11}, {0x2, 0x4}, {0x2, 0x7, 0xffffffffffffffff}], {0x4, 0x6}, [{}, {0x8, 0x2, 0xffffffffffffffff}, {0x8, 0x6, 0xee01}], {0x10, 0x2}, {0x20, 0x1}}, 0x74, 0x1)
sendmsg$ETHTOOL_MSG_FEATURES_GET(r4, &(0x7f0000003280)={&(0x7f0000002f80)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000003240)={&(0x7f0000003140)={0xf8, 0x0, 0x800, 0x70bd27, 0x25dfdbfd, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x40000}, 0x20000800)

09:43:16 executing program 7:
ioctl$KDGKBENT(0xffffffffffffffff, 0x4b46, &(0x7f0000000000)={0x7f, 0x8, 0x5de})
ioctl$VT_OPENQRY(0xffffffffffffffff, 0x5600, &(0x7f0000000040))
ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, &(0x7f0000000480)={0x4e, 0x19, &(0x7f0000000080)})
ioctl$F2FS_IOC_RESIZE_FS(0xffffffffffffffff, 0x4008f510, &(0x7f00000004c0)=0x8)
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000500)='./file0\x00', 0x0)
fdatasync(r0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, &(0x7f0000000540)=""/236, &(0x7f0000000640)=0xec)
ioctl$TIOCGPKT(0xffffffffffffffff, 0x80045438, &(0x7f0000000680))
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000006c0)={{0x1, 0x1, 0x18, <r1=>r0, {0x7}}, './file0\x00'})
ioctl$KDSETKEYCODE(r1, 0x4b4d, &(0x7f0000000700)={0xbeaa, 0x7})
sendmsg$NFNL_MSG_CTHELPER_DEL(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000800)={&(0x7f0000000780)={0x6c, 0x2, 0x9, 0x180, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x9}}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x1000}, @NFCTH_TUPLE={0x10, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_STATUS={0x8}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}, @NFCTH_STATUS={0x8}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x3b00}]}, 0x6c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000880)='/sys/power/pm_freeze_timeout', 0x80000, 0x11)
sendmsg$IEEE802154_LLSEC_DEL_KEY(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x1c, 0x0, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xfffe}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8051)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000a00)={'wpan1\x00', <r3=>0x0})
sendmsg$NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x4c, 0x0, 0x400, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x10}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x5}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x17}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x4c}}, 0x4040010)
sendmsg$NL80211_CMD_JOIN_OCB(r1, &(0x7f0000000c40)={&(0x7f0000000b40), 0xc, &(0x7f0000000c00)={&(0x7f0000000b80)={0x50, 0x0, 0x400, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x79}}}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x2}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x44000}, 0x4050)
ioctl$VT_DISALLOCATE(r1, 0x5608)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000d40)={{0x1, 0x1, 0x18, <r4=>r2, {<r5=>0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'})
mount$9p_rdma(&(0x7f0000000c80), &(0x7f0000000cc0)='./file0\x00', &(0x7f0000000d00), 0x94010, &(0x7f0000000d80)={'trans=rdma,', {'port', 0x3d, 0x4e24}, 0x2c, {[{@timeout={'timeout', 0x3d, 0x8}}, {@timeout={'timeout', 0x3d, 0x1f}}], [{@uid_gt={'uid>', 0xee01}}, {@dont_hash}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@hash}, {@fowner_gt={'fowner>', r5}}, {@uid_gt={'uid>', 0xee01}}, {@seclabel}]}})
ioctl$TIOCSRS485(r4, 0x542f, &(0x7f0000000e80)={0x6, 0x4, 0xffffffff})

[   95.160544] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   95.162335] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   95.164060] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   95.166306] ==================================================================
[   95.167361] BUG: KASAN: slab-use-after-free in hci_cmd_work+0x66d/0x6d0
[   95.168352] Read of size 2 at addr ffff88801e85a678 by task kworker/u11:3/298
[   95.173082] 
[   95.173358] CPU: 0 UID: 0 PID: 298 Comm: kworker/u11:3 Not tainted 6.18.0-rc5-next-20251114 #1 PREEMPT(voluntary) 
[   95.173386] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   95.173401] Workqueue: hci2 hci_cmd_work
[   95.173430] Call Trace:
[   95.173438]  <TASK>
[   95.173446]  dump_stack_lvl+0xca/0x120
[   95.173489]  print_report+0xcb/0x610
[   95.173519]  ? __virt_addr_valid+0x100/0x5d0
[   95.173544]  ? hci_cmd_work+0x66d/0x6d0
[   95.173571]  ? hci_cmd_work+0x66d/0x6d0
[   95.173598]  kasan_report+0xca/0x100
[   95.173625]  ? hci_cmd_work+0x66d/0x6d0
[   95.173655]  hci_cmd_work+0x66d/0x6d0
[   95.173684]  process_one_work+0x8e1/0x19c0
[   95.173721]  ? __pfx_process_one_work+0x10/0x10
[   95.173751]  ? move_linked_works+0x172/0x270
[   95.173775]  ? assign_work+0x196/0x240
[   95.173805]  worker_thread+0x67e/0xe90
[   95.173835]  ? trace_irq_enable.constprop.0+0xc2/0x100
[   95.173861]  ? __pfx_worker_thread+0x10/0x10
[   95.173892]  kthread+0x3c8/0x740
[   95.173920]  ? __pfx_kthread+0x10/0x10
[   95.173946]  ? ret_from_fork+0x79/0x7a0
[   95.173968]  ? lock_release+0xc8/0x290
[   95.174001]  ? __pfx_kthread+0x10/0x10
[   95.174029]  ret_from_fork+0x67a/0x7a0
[   95.174049]  ? __pfx_ret_from_fork+0x10/0x10
[   95.174071]  ? __switch_to+0x759/0x1060
[   95.174101]  ? __pfx_kthread+0x10/0x10
[   95.174128]  ret_from_fork_asm+0x1a/0x30
[   95.174163]  </TASK>
[   95.174171] 
[   95.190714] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   95.191135] Allocated by task 296:
[   95.191149]  kasan_save_stack+0x24/0x50
[   95.192114] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   95.192441]  kasan_save_track+0x14/0x30
[   95.192465]  __kasan_slab_alloc+0x59/0x70
[   95.192488]  kmem_cache_alloc_node_noprof+0x228/0x6b0
[   95.194420] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   95.194530]  __alloc_skb+0x2ab/0x370
[   95.199391]  hci_cmd_sync_alloc+0x34/0x300
[   95.199582] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   95.200015]  __hci_cmd_sync_sk+0xf7/0x5c0
[   95.201527]  hci_read_local_features_sync+0x2c/0x170
[   95.202262]  hci_dev_open_sync+0x145c/0x1f60
[   95.202904]  hci_power_on+0xdb/0x5d0
[   95.203466]  process_one_work+0x8e1/0x19c0
[   95.204078]  worker_thread+0x67e/0xe90
[   95.204653]  kthread+0x3c8/0x740
[   95.204885] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   95.205147]  ret_from_fork+0x67a/0x7a0
[   95.205168]  ret_from_fork_asm+0x1a/0x30
[   95.207176] 
[   95.207438] Freed by task 294:
[   95.207900]  kasan_save_stack+0x24/0x50
[   95.208478]  kasan_save_track+0x14/0x30
[   95.208488] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   95.209054]  kasan_save_free_info+0x3a/0x60
[   95.210565]  __kasan_slab_free+0x43/0x70
[   95.211156]  kmem_cache_free+0x26f/0x500
[   95.211770]  kfree_skbmem+0x18a/0x1f0
[   95.212328]  sk_skb_reason_drop+0x10e/0x1b0
[   95.212941]  vhci_read+0x3d5/0x5d0
[   95.213473]  vfs_read+0x1eb/0xc70
[   95.213979]  ksys_read+0x121/0x240
[   95.214496]  do_syscall_64+0xbf/0x430
[   95.215062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.215810] 
[   95.216061] The buggy address belongs to the object at ffff88801e85a640
[   95.216061]  which belongs to the cache skbuff_head_cache of size 232
[   95.217621] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   95.217893] The buggy address is located 56 bytes inside of
[   95.217893]  freed 232-byte region [ffff88801e85a640, ffff88801e85a728)
[   95.219747] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   95.220459] 
[   95.220466] The buggy address belongs to the physical page:
[   95.220476] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1e85a
[   95.220496] flags: 0x100000000000000(node=0|zone=1)
[   95.224225] page_type: f5(slab)
[   95.224707] raw: 0100000000000000 ffff8880096c78c0 ffffea0000338980 dead000000000002
[   95.225821] raw: 0000000000000000 00000000000c000c 00000000f5000000 0000000000000000
[   95.226911] page dumped because: kasan: bad access detected
[   95.227704] 
[   95.227953] Memory state around the buggy address:
[   95.228643]  ffff88801e85a500: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   95.229711]  ffff88801e85a580: fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc
[   95.230736] >ffff88801e85a600: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[   95.231764]                                                                 ^
[   95.232791]  ffff88801e85a680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   95.233829]  ffff88801e85a700: fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc
[   95.234852] ==================================================================
[   95.235975] Disabling lock debugging due to kernel taint
[   95.238002] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   95.238063] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   95.239129] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   95.242491] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   95.242555] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   95.244141] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   95.247102] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   95.249415] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   95.250524] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   95.251715] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   95.260269] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   95.262424] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   95.265051] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   95.267612] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   95.267659] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   95.273518] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   95.275973] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   95.278196] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   95.287521] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   95.289785] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   95.291177] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   95.295555] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   95.297940] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   95.310443] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   95.317515] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   95.321286] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   95.321307] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   95.345556] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   95.349126] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   97.298469] Bluetooth: hci3: command tx timeout
[   97.298918] Bluetooth: hci2: command tx timeout
[   97.299306] Bluetooth: hci1: command tx timeout
[   97.300273] Bluetooth: hci5: command tx timeout
[   97.300724] Bluetooth: hci4: command tx timeout
[   97.363394] Bluetooth: hci6: command tx timeout
[   97.363792] Bluetooth: hci0: command tx timeout
[   97.427381] Bluetooth: hci7: command tx timeout
[   99.346424] Bluetooth: hci5: command tx timeout
[   99.346944] Bluetooth: hci1: command tx timeout
[   99.348179] Bluetooth: hci4: command tx timeout
[   99.348200] Bluetooth: hci2: command tx timeout
[   99.348631] Bluetooth: hci3: command tx timeout
[   99.411504] Bluetooth: hci0: command tx timeout
[   99.411899] Bluetooth: hci6: command tx timeout
[   99.475381] Bluetooth: hci7: command tx timeout
[  101.394426] Bluetooth: hci2: command tx timeout
[  101.394881] Bluetooth: hci5: command tx timeout
[  101.395438] Bluetooth: hci1: command tx timeout
[  101.395914] Bluetooth: hci4: command tx timeout
[  101.396525] Bluetooth: hci3: command tx timeout
[  101.459385] Bluetooth: hci6: command tx timeout
[  101.459836] Bluetooth: hci0: command tx timeout
[  101.523402] Bluetooth: hci7: command tx timeout
[  103.442590] Bluetooth: hci4: command tx timeout
[  103.443504] Bluetooth: hci1: command tx timeout
[  103.444197] Bluetooth: hci3: command tx timeout
[  103.444231] Bluetooth: hci5: command tx timeout
[  103.445164] Bluetooth: hci2: command tx timeout
[  103.506436] Bluetooth: hci0: command tx timeout
[  103.506849] Bluetooth: hci6: command tx timeout
[  103.570486] Bluetooth: hci7: command tx timeout

VM DIAGNOSIS:
09:43:17  Registers:
info registers vcpu 0
RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8293dd05 RDI=ffffffff889747c0 RBP=ffffffff88974780 RSP=ffff888015f37618
R8 =0000000000000000 R9 =ffffed10016c5046 R10=0000000000000031 R11=6531303838386652
R12=0000000000000031 R13=0000000000000010 R14=ffffffff88974780 R15=ffffffff8293dcf0
RIP=ffffffff8293dd5d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e538f000 00000000 00000000
LDT=0000 fffffe3b00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fc128549070 CR3=000000000d384000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f03711087c000007f03711087c8
XMM02=00007f03711087e000007f03711087c0 XMM03=00007f03711087c800007f03711087c0
XMM04=ffffffffffffffffffffffffffffff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000080 RCX=0000000000000000 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff85f05f20 RBP=ffffffff81a93a2e RSP=ffff88800a3275f8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=0000000000092cc0 R13=0000000000092cc0 R14=ffff888008c4b780 R15=ffffffff81b637eb
RIP=ffffffff81529e50 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e548f000 00000000 00000000
LDT=0000 fffffe4400000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f9008ed45f0 CR3=000000000e458000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffffffffffffffffffff XMM01=30306234386136303638616663356134
XMM02=38303062343861363036386166633561 XMM03=2f6c616e72756f6a2f676f6c2f6e7572
XMM04=a2d25d8100a99855000000000012f8f8 XMM05=d3fdd5f48436fbd700000000000aead0
XMM06=994f0401035f111100000000000ae988 XMM07=00000000000000000000000000000000
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=20200000000020202020202020200000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000