[ 55.248785] audit: type=1400 audit(1736129434.591:6): avc: denied { checkpoint_restore } for pid=224 comm="agetty" capability=40 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:21065' (ECDSA) to the list of known hosts. 2025/01/06 02:10:42 fuzzer started 2025/01/06 02:10:42 dialing manager at localhost:34561 syzkaller login: [ 64.136711] cgroup: Unknown subsys name 'net' [ 64.259185] cgroup: Unknown subsys name 'cpuset' [ 64.290719] cgroup: Unknown subsys name 'rlimit' 2025/01/06 02:11:03 syscalls: 200 2025/01/06 02:11:03 code coverage: enabled 2025/01/06 02:11:03 comparison tracing: enabled 2025/01/06 02:11:03 extra coverage: enabled 2025/01/06 02:11:03 setuid sandbox: enabled 2025/01/06 02:11:03 namespace sandbox: enabled 2025/01/06 02:11:03 Android sandbox: enabled 2025/01/06 02:11:03 fault injection: enabled 2025/01/06 02:11:03 leak checking: enabled 2025/01/06 02:11:03 net packet injection: enabled 2025/01/06 02:11:03 net device setup: enabled 2025/01/06 02:11:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/06 02:11:03 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/06 02:11:03 USB emulation: enabled 2025/01/06 02:11:03 hci packet injection: enabled 2025/01/06 02:11:03 wifi device emulation: enabled 2025/01/06 02:11:03 802.15.4 emulation: enabled 2025/01/06 02:11:03 fetching corpus: 0, signal 0/0 (executing program) 2025/01/06 02:11:05 starting 8 fuzzer processes 02:11:05 executing program 0: sendmsg$NLBL_MGMT_C_ADDDEF(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x68, 0x0, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private2}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x1d}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x18}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x1}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_DOMAIN={0xd, 0x1, '/t\xf7$&,\\]\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x23}]}, 0x68}, 0x1, 0x0, 0x0, 0x400c4}, 0x80) sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0xf}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44f01d89714dfe01}, 0x20000000) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x7c, 0x0, 0x1, 0x70bd29, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private1}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}}, @NLBL_UNLABEL_A_SECCTX={0x2b, 0x7, 'system_u:object_r:wireless_device_t:s0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'vlan0\x00'}]}, 0x7c}, 0x1, 0x0, 0x0, 0x8850}, 0x810) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x30, 0x0, 0x8, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_LEVEL={0x14, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x4}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x880}, 0x804) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_KEY(r0, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x28, 0x0, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0xc8}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}]}, 0x28}, 0x1, 0x0, 0x0, 0x5}, 0x44000) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000005c0), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000600)={'wpan1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r0, &(0x7f0000000700)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x34, r1, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x400c000}, 0x4040) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f0000000800)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x40, r1, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_LEVEL={0x2c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x7}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x7f}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x8}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x2000041) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICADD(r4, &(0x7f0000000900)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x30, 0x0, 0x2, 0x70bd2a, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0xc0) sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x34, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x9}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}]}, 0x34}}, 0x40000) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_STATUS(r5, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x48, 0x0, 0x300, 0x70bd2a, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x400}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x4}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x3d8}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x48}, 0x1, 0x0, 0x0, 0x780e62713d00687e}, 0xc8c4) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_VERSION(r6, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x28, 0x0, 0x300, 0x70bd29, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @rand_addr=' \x01\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4014) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r4, &(0x7f0000000d80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000d40)={&(0x7f0000000cc0)={0x5c, 0x0, 0x2, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_SECCTX={0x30, 0x7, 'system_u:object_r:system_dbusd_var_lib_t:s0\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0xe}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}]}, 0x5c}}, 0x80) sendmsg$NBD_CMD_STATUS(r4, &(0x7f0000001040)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x64, 0x0, 0x4, 0x70bd2b, 0x25dfdbfb, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7f}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x20}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x101}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x44004000}, 0x4000000) 02:11:05 executing program 1: getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000000)={{{@in=@broadcast, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private1}, 0x0, @in6=@mcast2}}, &(0x7f0000000100)=0xe8) r1 = accept(0xffffffffffffffff, &(0x7f0000000140)=@ax25={{0x3, @default}, [@netrom, @remote, @bcast, @default, @null, @null, @bcast, @null]}, &(0x7f00000001c0)=0x80) sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x44, 0x0, 0x0, 0x70bd2c, 0x25dfdbff, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x6}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x7}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x10000) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$NET_DM_CMD_STOP(r2, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, r3, 0x320, 0x70bd2c, 0x25dfdbfb, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmsg$IEEE802154_DISASSOCIATE_REQ(r2, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x74, 0x0, 0x300, 0x70bd29, 0x25dfdbfb, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xfffe}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_REASON={0x5, 0x12, 0x7}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0x15542}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_REASON={0x5, 0x12, 0x3}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0x1e3f69e3bea509e1}}, @IEEE802154_ATTR_REASON={0x5, 0x12, 0x7}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x14, 0x0, 0x400, 0x70bd29, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x800) sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(r2, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0xb}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000884) sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x2c, 0x0, 0x20, 0x341b, 0x25dfdbfb, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x5}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x9}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x20000020) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$net_dm(&(0x7f00000008c0), r4) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000940), r2) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r2, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x28, r5, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000080}, 0x20004800) setsockopt$inet6_tcp_TLS_RX(r1, 0x6, 0x2, &(0x7f0000000a40)=@gcm_256={{0x304}, "5363d2d3671886df", "d7293c07b44233ffc14f77912a6ad024f91dc43fe138a4d865985ee0464b2d05", "a8e2b1c6", "cc8eccfee369ac05"}, 0x38) r6 = accept4$inet(r1, &(0x7f0000000a80)={0x2, 0x0, @private}, &(0x7f0000000ac0)=0x10, 0x80800) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r7, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x54, 0x0, 0x200, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x54}, 0x1, 0x0, 0x0, 0x4040000}, 0x11) sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(r7, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x2022}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x60, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0xb6bccaa531d93650}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x10000}]}, 0x60}, 0x1, 0x0, 0x0, 0xc000}, 0x8004) ioctl$sock_SIOCADDRT(r6, 0x890b, &(0x7f0000000dc0)={0x0, @can={0x1d, r0}, @llc={0x1a, 0x307, 0x5, 0x8, 0x3f, 0x73}, @sco, 0x6, 0x0, 0x0, 0x0, 0xd3, &(0x7f0000000d80)='veth0\x00', 0x5, 0x1000, 0x7}) 02:11:05 executing program 2: r0 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NLBL_MGMT_C_VERSION(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r0, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x1e}, @NLBL_MGMT_A_DOMAIN={0x16, 0x1, '{\\))&{{!\\\\\\:}+!*\xfa\x00'}, @NLBL_MGMT_A_DOMAIN={0xb, 0x1, '-+-[+&\x00'}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast1}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x40080}, 0x0) sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x0, 0x2, 0x70bd2b, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}, 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x4004001) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x30, 0x0, 0x425, 0x70bd2c, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x888}, 0x4000001) sendmsg$IEEE802154_LIST_PHY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x50}, 0x4004800) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000500), 0xffffffffffffffff) sendmsg$BATADV_CMD_SET_VLAN(r2, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x34, r3, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_MULTICAST_FANOUT={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040}, 0x20040801) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000006c0)={'batadv_slave_1\x00', 0x0}) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f00000007c0)={&(0x7f0000000600), 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x64, r3, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x63}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x101}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x7f}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000004}, 0x80) sendmsg$IEEE802154_LLSEC_DEL_KEY(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000008c0)={&(0x7f0000000840)={0x48, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x2}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}]}, 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x20000000) sendmsg$BATADV_CMD_TP_METER(r2, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x3c, r3, 0x8, 0x70bd28, 0x25dfdbfe, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x2}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x3}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xff}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x774}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x240040d1) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x58, 0x0, 0x2, 0x70bd26, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x7}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x81}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x82}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x77}]}, 0x58}, 0x1, 0x0, 0x0, 0x801}, 0x4004000) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000bc0), 0xffffffffffffffff) sendmsg$NLBL_CALIPSO_C_LIST(r5, &(0x7f0000000c80)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x24, r6, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x2000c000) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000d00), r5) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r7, &(0x7f0000000dc0)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d40)={0x3c, r8, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x24000001) 02:11:05 executing program 3: mlockall(0x2) r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@local, @local, @private2={0xfc, 0x2, '\x00', 0x34}, 0x8001, 0x8, 0x86, 0x100, 0x6}) mlockall(0x4) getpeername(r0, &(0x7f0000000080)=@in={0x2, 0x0, @local}, &(0x7f0000000100)=0x80) socket$packet(0x11, 0x3, 0x300) setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f0000000140)={0x3, {{0xa, 0x4e23, 0xfff, @local, 0xffffffc2}}, {{0xa, 0x4e22, 0x1f, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}}}, 0x108) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000280)={{{@in=@local, @in6=@ipv4={""/10, ""/2, @dev}}}, {{@in=@empty}, 0x0, @in6=@mcast2}}, &(0x7f0000000380)=0xe8) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x180000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x68, r2, 0x200, 0x70bd29, 0x25dfdbfe, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x131}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x104}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x3f}]}, 0x68}, 0x1, 0x0, 0x0, 0x80}, 0x0) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000580), r1) ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f00000005c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r3, &(0x7f0000000680)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x30, r4, 0x10, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000001}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x40040}, 0x40080) getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f00000006c0)={'IDLETIMER\x00'}, &(0x7f0000000700)=0x1e) r6 = syz_genetlink_get_family_id$nbd(&(0x7f0000000780), r1) sendmsg$NBD_CMD_STATUS(r3, &(0x7f0000000880)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x44, r6, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x9}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x128}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x109}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x11) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000900)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_CHANNEL(r1, &(0x7f0000000a00)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000940)={0x50, r4, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0x10}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x13}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000080}, 0x14) [ 86.260785] audit: type=1400 audit(1736129465.612:7): avc: denied { execmem } for pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 02:11:05 executing program 6: r0 = accept(0xffffffffffffffff, &(0x7f0000000000)=@xdp={0x2c, 0x0, 0x0}, &(0x7f0000000080)=0x80) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f00000000c0)={0x32, 0x0, '\x00', [@padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}, 0x10) r3 = accept(r2, &(0x7f0000000100)=@ieee802154={0x24, @short}, &(0x7f0000000180)=0x80) ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f00000001c0)) getpeername(r2, &(0x7f0000000200)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, &(0x7f0000000280)=0x80) r5 = accept(r4, &(0x7f00000002c0)=@ax25={{0x3, @bcast}, [@remote, @bcast, @netrom, @default, @default, @default, @null, @netrom]}, &(0x7f0000000340)=0x80) ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000000400)={'sit0\x00', &(0x7f0000000380)={'ip6gre0\x00', r1, 0x29, 0x10, 0x1, 0x8, 0x1, @mcast1, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x700, 0x700, 0x1, 0x3ff}}) r6 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r6, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @multicast2, r1}, 0xc) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000480)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x10000, 0x1, 0x3, 0x2, 0xf2fa, 0x7f}, 0x20) r7 = socket$inet6(0xa, 0x6, 0x8) setsockopt$inet6_mtu(r7, 0x29, 0x17, &(0x7f00000004c0)=0x5, 0x4) ioctl$sock_ifreq(r7, 0x8929, &(0x7f0000000500)={'nr0\x00', @ifru_flags}) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$nbd(&(0x7f0000000580), 0xffffffffffffffff) r10 = accept4(r0, &(0x7f00000005c0)=@tipc=@id, &(0x7f0000000640)=0x80, 0x100800) socketpair(0x3, 0x5, 0x80, &(0x7f0000000680)={0xffffffffffffffff}) sendmsg$NBD_CMD_STATUS(r8, &(0x7f00000007c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x2febc432209181dd}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)={0x90, r9, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@NBD_ATTR_SOCKETS={0x24, 0x7, 0x0, 0x1, [{0x8, 0x1, r10}, {0x8, 0x1, r11}, {0x8, 0x1, r3}, {0x8, 0x1, r5}]}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0x8, 0x1, r3}, {0x8, 0x1, r4}, {0x8, 0x1, r3}]}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x100000001}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x200}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0x90}, 0x1, 0x0, 0x0, 0xc004}, 0x2400c880) syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000800), r8) 02:11:05 executing program 4: sendmsg$802154_raw(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x24, @none={0x0, 0x2}}, 0x14, &(0x7f0000000100)={&(0x7f0000000040)="68012269c10fde720632e28d7a6e2629cd19e2eea72466395389f678d5da55577752f984cd0f463063183f2c219f56a18e3a71f4a5e54bc6e5c8488ba28d8fb3125077eb52ab4e2beaeef8721abb86fe92f38894392c152b011676bf86cb81f2718bc50f2924d7e74f7c6126a9ed0c5bb2ed0f08a49356e81b5ab3ef276ea269b0ff2e695a60256810bead8387641d2237e966da8ba7fb6f2d", 0x99}, 0x1, 0x0, 0x0, 0x20000004}, 0x48080) r0 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, r0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x3}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x81}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000004}, 0x40000) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x38, 0x0, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa1}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r1}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000001}, 0x4000000) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x24, r0, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}]}, 0x24}, 0x1, 0x0, 0x0, 0x840}, 0x20000004) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000500), r2) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000580), r2) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000005c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_CCA_MODE(r3, &(0x7f0000000680)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x2c, r4, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x0) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000700), r3) sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r6, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x14, r7, 0x100, 0x70bd29, 0x25dfdbfd, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x4008090) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000800)) socketpair(0x8, 0x800, 0x7, &(0x7f0000000840)) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f00000008c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r8, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x6c, r0, 0x300, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_SEC_DEVKEY={0x50, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x18}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x3}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x71a3}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x2029}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x810}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x400c010}, 0x20000000) 02:11:05 executing program 5: shmget(0x2, 0x2000, 0x10, &(0x7f0000ffc000/0x2000)=nil) r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @private}, &(0x7f0000000040)=0x10, 0x0) setsockopt$EBT_SO_SET_COUNTERS(r0, 0x0, 0x81, &(0x7f0000000100)={'filter\x00', 0x0, 0x0, 0x0, [0x1f, 0x6, 0x9, 0xfffffffffffffff9, 0x9, 0x4], 0xa, &(0x7f0000000080)=[{}, {}, {}, {}, {}], 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x118) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000240)={0x1, {{0x2, 0x4e23, @private=0xa010101}}, 0x0, 0x3, [{{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x3f}}}, {{0x2, 0x4e20, @broadcast}}, {{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}]}, 0x210) socketpair(0x9, 0xa, 0x80, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000004c0)={{{@in=@multicast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in=@multicast1}}, &(0x7f00000005c0)=0xe8) shmget(0x2, 0x2000, 0x400, &(0x7f0000ffd000/0x2000)=nil) r3 = accept$inet(r1, 0x0, &(0x7f0000000600)) setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0) r4 = accept$inet(r1, &(0x7f0000000640)={0x2, 0x0, @remote}, &(0x7f0000000680)=0x10) setsockopt$IP_VS_SO_SET_ZERO(r4, 0x0, 0x48f, &(0x7f00000006c0)={0x89, @empty, 0x4e23, 0x2, 'sed\x00', 0x11, 0x1, 0x7c}, 0x2c) setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f0000000700)={0x4, {{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0xe}}}, 0x1, 0x4, [{{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e20, @private=0xa010100}}, {{0x2, 0x4e22, @private=0xa010102}}, {{0x2, 0x4e23, @remote}}]}, 0x290) getsockname$inet6(r1, &(0x7f00000009c0)={0xa, 0x0, 0x0, @local}, &(0x7f0000000a00)=0x1c) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000a40)={{{@in=@initdev, @in6=@private2}}, {{@in6=@dev}, 0x0, @in=@broadcast}}, &(0x7f0000000b40)=0xe8) r5 = socket$inet_tcp(0x2, 0x1, 0x0) recvfrom$inet(r5, &(0x7f0000000b80)=""/226, 0xe2, 0x100, &(0x7f0000000c80)={0x2, 0x4e22, @broadcast}, 0x10) accept4$inet6(0xffffffffffffffff, &(0x7f0000000cc0)={0xa, 0x0, 0x0, @private0}, &(0x7f0000000d00)=0x1c, 0x800) setsockopt$inet_mreqn(r5, 0x0, 0x24, &(0x7f0000000d40)={@private=0xa010102, @remote, r2}, 0xc) r6 = accept$inet(r3, &(0x7f0000000d80)={0x2, 0x0, @multicast1}, &(0x7f0000000dc0)=0x10) accept4$inet(r6, &(0x7f0000000e00)={0x2, 0x0, @loopback}, &(0x7f0000000e40)=0x10, 0x0) 02:11:05 executing program 7: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x48f, &(0x7f0000000000)={0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e23, 0x3, 'lblcr\x00', 0x14, 0x8, 0x28}, 0x2c) setsockopt$IP_VS_SO_SET_DELDEST(r0, 0x0, 0x488, &(0x7f0000000040)={{0x2f, @private=0xa010100, 0x4e21, 0x0, 'lblc\x00', 0x0, 0x100, 0x65}, {@broadcast, 0x4e23, 0x0, 0x5, 0x4, 0x9}}, 0x44) r1 = socket$inet(0x2, 0x5, 0x9) modify_ldt$write(0x1, &(0x7f00000000c0)={0xd7, 0x20000800, 0x4000, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1}, 0x10) r2 = accept$inet(r1, &(0x7f0000000100)={0x2, 0x0, @private}, &(0x7f0000000140)=0x10) setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000180)={{0x0, @local, 0x4e24, 0x1, 'rr\x00', 0x8, 0x1000, 0x6a}, {@empty, 0x4e22, 0x3, 0x11a08ba, 0x4, 0xa36f}}, 0x44) setsockopt$inet6_MRT6_DEL_MFC(0xffffffffffffffff, 0x29, 0xcd, &(0x7f0000000200)={{0xa, 0x4e24, 0x6, @mcast2, 0x32a}, {0xa, 0x4e23, 0x1, @private0={0xfc, 0x0, '\x00', 0x1}, 0x1ff}, 0x3, [0x0, 0x5, 0xa, 0x5, 0x3, 0x0, 0x200, 0x1]}, 0x5c) r3 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000340)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000380)=0x1c, 0x80000) setsockopt$inet6_mtu(r3, 0x29, 0x17, &(0x7f00000003c0)=0x2, 0x4) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000400)={{{@in6=@mcast1, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@ipv4={""/10, ""/2, @initdev}}}, &(0x7f0000000500)=0xe8) keyctl$get_persistent(0x16, r4, 0xfffffffffffffff8) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000540)) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$IEEE802154_SCAN_REQ(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x34, r5, 0x200, 0x70bd2d, 0x25dfdbfe, {}, [@IEEE802154_ATTR_PAGE={0x5, 0x1d, 0xd}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x7}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x3}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x6}]}, 0x34}}, 0x800) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000006c0)={@loopback, @loopback, 0x1, 0x3, [@loopback, @broadcast, @multicast1]}, 0x1c) r6 = accept$inet6(r0, 0x0, &(0x7f0000000700)) setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000000740)={0x29, 0x45, '\x00', [@ra={0x5, 0x2, 0x5}, @calipso={0x7, 0x48, {0x2, 0x10, 0x4, 0x13e, [0x9, 0x1b, 0x0, 0x9, 0x4, 0x21b3a071, 0x79, 0xffffffffffff8603]}}, @generic={0x1, 0xe4, "c9ae97ccae20f76cfcd22d7d5de64b49d2de611c3d64ef3f6ca0eade12246f4add960d31ea9f07e527868b575a369d77d3b543c1ce976ab7eb48b70eeb388d6965769aaed0d22b0483a485b9b4d568e60da987cb3790f450ab3fcf5e383ac15223fc0b84ef4598dbb96900ad418740efad252178b862fcde78f5e6b88cbfcf659385a2655ddf064312007d29df858a268077b7e5e19428b95ef95c21a6163e4de08c6f40b7174220ce5e2c2726591677bbe84c6eac8ae81926f46f0994c10435f6f9f3fede3a0b93111bd30d43b4a9fc2734ca3da0e7983444ca12c3ca6fbc7458719aae"}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo, @generic={0x88, 0xc5, "dfd16d08e42c233a10caaae9434433da21862298d8f8b629bf6d7e8937811cfc98be7adb531a5b1a80b5fbe307dc10290d1b8f62a089383fa00c80ce6f98e12e7bd66089feb847e9d8907137f7fdf57e8f95b44b983b198899dd0f75755453cd0dea4b1039394d2f7debe488eaed4ab0a2fe7dac7b55d024677b6d8f76ee27c82a3c3b03b9029a5a7bcbcbdfc8149eea3dd0f3729fcee7a23c86007f3bd434968a28a2c4abd80c916ab5b630cdf606eacf0766cc9543676688fef2d3fe4ef4180294354928"}, @enc_lim={0x4, 0x1, 0x9}, @calipso={0x7, 0x18, {0x0, 0x4, 0x3f, 0x924, [0xfff, 0x0]}}]}, 0x230) accept4$inet6(r6, &(0x7f0000000980)={0xa, 0x0, 0x0, @mcast2}, &(0x7f00000009c0)=0x1c, 0x180000) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000a00)={{{@in=@multicast2, @in6=@empty}}, {{@in6}, 0x0, @in=@empty}}, &(0x7f0000000b00)=0xe8) [ 87.743023] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 87.745815] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 87.746098] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 87.749342] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 87.754990] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 87.758147] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 87.760707] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 87.761935] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 87.764251] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 87.764836] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 87.788343] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 87.796419] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 87.798883] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 87.800213] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 87.804216] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 87.821088] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 87.833874] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 87.852678] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 87.855030] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 87.856366] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 87.858196] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 87.861766] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 87.864138] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 87.865832] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 87.867974] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 87.869686] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 87.870976] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 87.871167] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 87.875715] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 87.878801] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 87.885994] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 87.887596] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 87.888827] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 87.892874] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 87.903227] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 87.904950] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 87.908475] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 87.910773] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 87.914514] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 87.918013] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 87.920052] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.932859] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 87.959047] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 87.960378] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 87.973013] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 87.977449] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 87.990058] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 87.993349] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 89.816335] Bluetooth: hci2: command tx timeout [ 89.879658] Bluetooth: hci0: command tx timeout [ 89.943761] Bluetooth: hci1: command tx timeout [ 89.945179] Bluetooth: hci6: command tx timeout [ 90.007697] Bluetooth: hci3: command tx timeout [ 90.008972] Bluetooth: hci5: command tx timeout [ 90.072042] Bluetooth: hci4: command tx timeout [ 90.073475] Bluetooth: hci7: command tx timeout [ 91.863694] Bluetooth: hci2: command tx timeout [ 91.928478] Bluetooth: hci0: command tx timeout [ 91.991701] Bluetooth: hci6: command tx timeout [ 91.992323] Bluetooth: hci1: command tx timeout [ 92.055752] Bluetooth: hci3: command tx timeout [ 92.056350] Bluetooth: hci5: command tx timeout [ 92.119696] Bluetooth: hci7: command tx timeout [ 92.120278] Bluetooth: hci4: command tx timeout [ 93.911642] Bluetooth: hci2: command tx timeout [ 93.976671] Bluetooth: hci0: command tx timeout [ 94.040872] Bluetooth: hci1: command tx timeout [ 94.042642] Bluetooth: hci6: command tx timeout [ 94.104786] Bluetooth: hci5: command tx timeout [ 94.106333] Bluetooth: hci3: command tx timeout [ 94.167665] Bluetooth: hci4: command tx timeout [ 94.168339] Bluetooth: hci7: command tx timeout [ 95.960717] Bluetooth: hci2: command tx timeout [ 96.023881] Bluetooth: hci0: command tx timeout [ 96.087777] Bluetooth: hci1: command tx timeout [ 96.089161] Bluetooth: hci6: command tx timeout [ 96.152798] Bluetooth: hci3: command tx timeout [ 96.154121] Bluetooth: hci5: command tx timeout [ 96.217761] Bluetooth: hci4: command tx timeout [ 96.219657] Bluetooth: hci7: command tx timeout [ 150.182071] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 150.184704] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 150.186950] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 150.191897] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 150.195127] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 150.197879] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 150.210590] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 150.214215] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 150.216746] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 150.224028] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 150.248176] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 150.249222] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 150.255995] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 150.260303] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 150.278174] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 150.290866] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 150.294824] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 150.296484] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 150.297937] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 150.299814] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 150.300841] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 150.303255] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 150.308759] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 150.314061] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 150.445895] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 150.463461] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 150.471305] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 150.487083] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 150.508395] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 150.518198] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 150.574819] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 150.595199] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 150.600859] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 150.607200] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 150.625991] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 150.647977] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 150.690944] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 150.694901] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 150.699772] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 150.722335] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 150.729036] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 150.731009] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 150.735432] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 150.737008] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 150.742106] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 150.759741] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 150.801439] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 150.812814] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 152.307784] Bluetooth: hci0: command tx timeout [ 152.343834] Bluetooth: hci3: command tx timeout [ 152.407783] Bluetooth: hci2: command tx timeout [ 152.550570] Bluetooth: hci1: command tx timeout [ 152.727626] Bluetooth: hci4: command tx timeout [ 152.791639] Bluetooth: hci7: command tx timeout [ 152.792464] Bluetooth: hci6: command tx timeout [ 152.920698] Bluetooth: hci5: command tx timeout [ 154.328585] Bluetooth: hci0: command tx timeout [ 154.391702] Bluetooth: hci3: command tx timeout [ 154.455622] Bluetooth: hci2: command tx timeout [ 154.583710] Bluetooth: hci1: command tx timeout [ 154.776727] Bluetooth: hci4: command tx timeout [ 154.839721] Bluetooth: hci6: command tx timeout [ 154.840277] Bluetooth: hci7: command tx timeout [ 154.967604] Bluetooth: hci5: command tx timeout [ 156.377569] Bluetooth: hci0: command tx timeout [ 156.439585] Bluetooth: hci3: command tx timeout [ 156.503702] Bluetooth: hci2: command tx timeout [ 156.631668] Bluetooth: hci1: command tx timeout [ 156.823590] Bluetooth: hci4: command tx timeout [ 156.889621] Bluetooth: hci7: command tx timeout [ 156.890081] Bluetooth: hci6: command tx timeout [ 157.015588] Bluetooth: hci5: command tx timeout [ 158.423659] Bluetooth: hci0: command tx timeout [ 158.487687] Bluetooth: hci3: command tx timeout [ 158.552189] Bluetooth: hci2: command tx timeout [ 158.680585] Bluetooth: hci1: command tx timeout [ 158.872105] Bluetooth: hci4: command tx timeout [ 158.935901] Bluetooth: hci6: command tx timeout [ 158.937309] Bluetooth: hci7: command tx timeout [ 159.063807] Bluetooth: hci5: command tx timeout [ 212.131100] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 212.134193] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 212.138896] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 212.148877] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 212.152796] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 212.155802] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 212.190312] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 212.194055] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 212.196426] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 212.202861] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 212.209405] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 212.220261] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 212.319203] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 212.325168] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 212.327433] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 212.339735] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 212.345016] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 212.349873] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 212.387278] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 212.400009] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 212.406897] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 212.429962] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 212.433813] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 212.435697] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 212.488816] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 212.490395] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 212.492090] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 212.497743] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 212.500973] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 212.502539] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 212.596937] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 212.599179] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 212.603751] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 212.605170] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 212.632408] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 212.634819] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 212.636675] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 212.640607] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 212.643972] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 212.646656] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 212.652859] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 212.665759] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 212.715746] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 212.716438] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 212.729595] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 212.730748] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 212.731837] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 212.740197] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 214.231621] Bluetooth: hci0: command tx timeout [ 214.295657] Bluetooth: hci1: command tx timeout [ 214.423792] Bluetooth: hci2: command tx timeout [ 214.487669] Bluetooth: hci3: command tx timeout [ 214.551667] Bluetooth: hci4: command tx timeout [ 214.807956] Bluetooth: hci5: command tx timeout [ 214.809043] Bluetooth: hci7: command tx timeout [ 214.872635] Bluetooth: hci6: command tx timeout [ 216.280651] Bluetooth: hci0: command tx timeout [ 216.344565] Bluetooth: hci1: command tx timeout [ 216.471614] Bluetooth: hci2: command tx timeout [ 216.536572] Bluetooth: hci3: command tx timeout [ 216.599598] Bluetooth: hci4: command tx timeout [ 216.856736] Bluetooth: hci7: command tx timeout [ 216.857227] Bluetooth: hci5: command tx timeout [ 216.920930] Bluetooth: hci6: command tx timeout [ 218.329051] Bluetooth: hci0: command tx timeout [ 218.391682] Bluetooth: hci1: command tx timeout [ 218.519597] Bluetooth: hci2: command tx timeout [ 218.583551] Bluetooth: hci3: command tx timeout [ 218.648596] Bluetooth: hci4: command tx timeout [ 218.903616] Bluetooth: hci5: command tx timeout [ 218.904086] Bluetooth: hci7: command tx timeout [ 218.967627] Bluetooth: hci6: command tx timeout [ 220.376589] Bluetooth: hci0: command tx timeout [ 220.439573] Bluetooth: hci1: command tx timeout [ 220.570517] Bluetooth: hci2: command tx timeout [ 220.631626] Bluetooth: hci3: command tx timeout [ 220.697152] Bluetooth: hci4: command tx timeout [ 220.952665] Bluetooth: hci5: command tx timeout [ 220.953149] Bluetooth: hci7: command tx timeout [ 221.016599] Bluetooth: hci6: command tx timeout [ 272.491318] syz-executor.4 (6585) used greatest stack depth: 23680 bytes left [ 275.115145] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 275.120434] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 275.122545] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 275.124873] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 275.127186] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 275.133445] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 275.143184] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 275.147995] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 275.150336] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 275.152998] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 275.165253] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 275.167432] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 275.259853] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 275.261685] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 275.264820] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 275.274892] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 275.276405] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 275.277335] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 275.285744] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 275.300935] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 275.302896] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 275.303726] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 275.309281] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 275.314292] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 275.315181] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 275.321425] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 275.323835] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 275.365575] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 275.377885] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 275.383984] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 275.385125] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 275.393887] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 275.396249] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 275.398799] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 275.404219] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 275.405832] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 275.406876] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 275.423723] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 275.444410] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 275.451030] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 275.455219] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 275.472727] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 275.483747] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 275.491321] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 275.509153] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 275.518654] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 275.524740] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 275.526109] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 277.207582] Bluetooth: hci1: command tx timeout [ 277.208573] Bluetooth: hci0: command tx timeout [ 277.335722] Bluetooth: hci2: command tx timeout [ 277.402532] Bluetooth: hci3: command tx timeout [ 277.463638] Bluetooth: hci5: command tx timeout [ 277.527597] Bluetooth: hci4: command tx timeout [ 277.591612] Bluetooth: hci7: command tx timeout [ 277.592825] Bluetooth: hci6: command tx timeout [ 279.255567] Bluetooth: hci0: command tx timeout [ 279.256581] Bluetooth: hci1: command tx timeout [ 279.383562] Bluetooth: hci2: command tx timeout [ 279.449520] Bluetooth: hci3: command tx timeout [ 279.511556] Bluetooth: hci5: command tx timeout [ 279.575542] Bluetooth: hci4: command tx timeout [ 279.639685] Bluetooth: hci6: command tx timeout [ 279.640103] Bluetooth: hci7: command tx timeout [ 281.303664] Bluetooth: hci1: command tx timeout [ 281.304367] Bluetooth: hci0: command tx timeout [ 281.431605] Bluetooth: hci2: command tx timeout [ 281.495869] Bluetooth: hci3: command tx timeout [ 281.560364] Bluetooth: hci5: command tx timeout [ 281.623551] Bluetooth: hci4: command tx timeout [ 281.687572] Bluetooth: hci7: command tx timeout [ 281.687665] Bluetooth: hci6: command tx timeout [ 283.352096] Bluetooth: hci0: command tx timeout [ 283.353202] Bluetooth: hci1: command tx timeout [ 283.481090] Bluetooth: hci2: command tx timeout [ 283.544535] Bluetooth: hci3: command tx timeout [ 283.607531] Bluetooth: hci5: command tx timeout [ 283.672589] Bluetooth: hci4: command tx timeout [ 283.736583] Bluetooth: hci6: command tx timeout [ 283.737043] Bluetooth: hci7: command tx timeout [ 337.512346] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 337.517074] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 337.519279] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 337.525922] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 337.529280] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 337.531805] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 337.594539] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 337.601874] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 337.605829] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 337.616118] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 337.620953] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 337.623103] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 337.709273] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 337.714030] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 337.716094] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 337.720139] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 337.722942] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 337.724809] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 337.939564] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 337.943672] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 337.947259] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 337.952423] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 337.956914] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 337.960179] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 338.035327] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 338.043119] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 338.051375] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 338.061342] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 338.066226] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 338.067902] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 338.070545] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 338.075326] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 338.076902] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 338.087448] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 338.091868] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 338.104131] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 338.105334] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 338.106691] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 338.129177] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 338.157650] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 338.169814] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 338.171189] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 338.176374] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 338.178891] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 338.181701] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 338.217556] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 338.218881] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 338.226848] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 339.607735] Bluetooth: hci0: command tx timeout [ 339.671549] Bluetooth: hci1: command tx timeout [ 339.800647] Bluetooth: hci2: command tx timeout [ 340.057771] Bluetooth: hci3: command tx timeout [ 340.247711] Bluetooth: hci7: command tx timeout [ 340.249049] Bluetooth: hci5: command tx timeout [ 340.311683] Bluetooth: hci4: command tx timeout [ 340.503879] Bluetooth: hci6: command tx timeout [ 341.656074] Bluetooth: hci0: command tx timeout [ 341.719581] Bluetooth: hci1: command tx timeout [ 341.849511] Bluetooth: hci2: command tx timeout [ 342.103648] Bluetooth: hci3: command tx timeout [ 342.296684] Bluetooth: hci7: command tx timeout [ 342.296708] Bluetooth: hci5: command tx timeout [ 342.360607] Bluetooth: hci4: command tx timeout [ 342.552537] Bluetooth: hci6: command tx timeout [ 343.703554] Bluetooth: hci0: command tx timeout [ 343.767583] Bluetooth: hci1: command tx timeout [ 343.896615] Bluetooth: hci2: command tx timeout [ 344.151534] Bluetooth: hci3: command tx timeout [ 344.343675] Bluetooth: hci7: command tx timeout [ 344.343706] Bluetooth: hci5: command tx timeout [ 344.407778] Bluetooth: hci4: command tx timeout [ 344.599550] Bluetooth: hci6: command tx timeout [ 345.751622] Bluetooth: hci0: command tx timeout [ 345.817544] Bluetooth: hci1: command tx timeout [ 345.943624] Bluetooth: hci2: command tx timeout [ 346.201549] Bluetooth: hci3: command tx timeout [ 346.391643] Bluetooth: hci7: command tx timeout [ 346.392095] Bluetooth: hci5: command tx timeout [ 346.455552] Bluetooth: hci4: command tx timeout [ 346.647574] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 02:16:11 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=ffffea00001bf2c0 RCX=ffffffff81999eaa RDX=0000000000000000 RSI=0000000000000008 RDI=ffffea00001bf2c0 RBP=ffffea00001bf2c0 RSP=ffff888024327850 R8 =0000000000000000 R9 =ffffea00001bf2c7 R10=ffffea00001bf2c7 R11=0000000000000000 R12=0000000006fcb025 R13=00007fcadca13000 R14=ffff888024327ce8 R15=0000000000000000 RIP=ffffffff81abd099 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f83f2d8e310 CR3=0000000031858000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=6461657268747062696c2f756e672d78 XMM02=00302e6f732e6461657268747062696c XMM03=2f756e672d78756e696c2d34365f3638 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=00007fabc8128000 RCX=ffffffff819a6500 RDX=ffff88802d508000 RSI=00007fabc8128000 RDI=0000000000000006 RBP=0000000000000000 RSP=ffff88802f597db8 R8 =0000000000000000 R9 =fffffbfff0fdfbf0 R10=00007fabc812abd8 R11=0000000000000000 R12=ffff8880191659a0 R13=ffff8880191659b0 R14=ffff8880191659d0 R15=00007fabc812abd8 RIP=ffffffff8171c950 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fabc812abd8 CR3=0000000035c54000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00362e6f732e6362696c2f756e672d78 XMM02=ffff0000000000ffffffffffffffffff XMM03=ffffffffffffffffffffffffffffffff XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000