Warning: Permanently added '[localhost]:15752' (ECDSA) to the list of known hosts. 2025/04/24 00:54:25 fuzzer started 2025/04/24 00:54:26 dialing manager at localhost:37747 syzkaller login: [ 94.580664] cgroup: Unknown subsys name 'net' [ 94.732399] cgroup: Unknown subsys name 'cpuset' [ 94.774697] cgroup: Unknown subsys name 'rlimit' 2025/04/24 00:54:40 syscalls: 208 2025/04/24 00:54:40 code coverage: enabled 2025/04/24 00:54:40 comparison tracing: enabled 2025/04/24 00:54:40 extra coverage: enabled 2025/04/24 00:54:40 setuid sandbox: enabled 2025/04/24 00:54:40 namespace sandbox: enabled 2025/04/24 00:54:40 Android sandbox: enabled 2025/04/24 00:54:40 fault injection: enabled 2025/04/24 00:54:40 leak checking: enabled 2025/04/24 00:54:40 net packet injection: enabled 2025/04/24 00:54:40 net device setup: enabled 2025/04/24 00:54:40 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/04/24 00:54:40 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/04/24 00:54:40 USB emulation: enabled 2025/04/24 00:54:40 hci packet injection: enabled 2025/04/24 00:54:40 wifi device emulation: enabled 2025/04/24 00:54:40 802.15.4 emulation: enabled 2025/04/24 00:54:40 fetching corpus: 0, signal 0/0 (executing program) 2025/04/24 00:54:42 starting 8 fuzzer processes 00:54:42 executing program 0: ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000000)={0x0, 0x4ad, 0x0, [0x8, 0x8000, 0x0, 0x100000000000, 0x3], [0x9, 0x99, 0x4, 0x4e, 0x3d, 0xfffffffffffffffd, 0x0, 0x1000, 0x6, 0x2db, 0xea, 0x3, 0x1, 0x10001, 0x100, 0xfa30, 0x60646fb6, 0x85a, 0xe56, 0x80000001, 0x2, 0x200000, 0x8, 0x1f, 0x9, 0x1, 0x3ff, 0x2, 0x0, 0x8, 0xa7, 0x1, 0x6, 0x2, 0xff, 0x9, 0x7, 0x4, 0x6, 0xaf8c, 0x7fff, 0xfff, 0x0, 0x0, 0x3, 0x100, 0x8001, 0x401, 0x7, 0x1f, 0x1, 0x3, 0x4, 0x100000001, 0x3, 0x401, 0xfff, 0x7, 0x7, 0xd11, 0xff, 0x7, 0x5, 0x7, 0x1000, 0x0, 0x100000001, 0xffffffffffffffff, 0x7, 0x400, 0x8, 0x9, 0x5, 0x7, 0x5, 0x2000000, 0x34e, 0x3, 0x8, 0x49a, 0x7, 0xcd, 0x1, 0x2, 0x2, 0x401, 0x0, 0x2, 0x8, 0x8e, 0x6, 0x3, 0x14d7d759, 0x8, 0x5, 0xfffffffffffff800, 0xfff, 0x5, 0x7fffffff, 0xc92, 0x7, 0x1, 0x448, 0x718, 0x7, 0x1, 0x4, 0x10000, 0x4, 0xe5c3, 0x40008000, 0x18, 0x9, 0x6, 0xff, 0x1f7, 0x1, 0x6, 0x3, 0x4, 0x5]}) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000440), 0x102, 0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000480)={"9f5c0555f2a2a31d28facee7be3dbfcd", 0x0, 0x0, {0x2, 0x8}, {0x1, 0x1}, 0x4, [0x3, 0x3, 0x400, 0x5, 0x78, 0x71c, 0xffffffffffffffc1, 0x9, 0x9, 0xb60c, 0x4, 0x8, 0x100, 0x7, 0x3, 0x400]}) sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x4c, 0x0, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x4}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x21}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x9}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20004040}, 0x24000800) r2 = eventfd2(0x3, 0x801) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f00000006c0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}}) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000ac0)=[r0, r0], 0x2) ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f0000000b00)={0x0, 0x2, @status={[0x100000000, 0x1000, 0x7, 0x3, 0x7, 0x8]}, [0x1, 0x401, 0x22d582e9, 0x7, 0x9, 0x40, 0x1f, 0x10001, 0x7, 0x9, 0x8c6, 0xffffffffffffffc0, 0x9, 0xdaaf, 0x8, 0x81, 0x47, 0x65, 0x1, 0x9, 0x800, 0x2, 0x8, 0x0, 0x1, 0xbc3, 0x4, 0x81, 0x200, 0x5, 0xf1, 0xffffffffffffffe1, 0x38f8, 0x7fff, 0xc73e, 0x200, 0x0, 0x3, 0xd65, 0x62f, 0x2c, 0x1, 0x5763, 0xc4, 0x3, 0x8029, 0x4b1fac20, 0x5, 0x6, 0x4000000000000000, 0x100, 0x52f, 0x7f, 0x1c14d141, 0x3, 0x3, 0x2, 0x2, 0x8, 0x4, 0x8, 0x731, 0xa1d, 0x7ff]}) r3 = syz_genetlink_get_family_id$team(&(0x7f0000001580), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f00000015c0)={'team0\x00', 0x0}) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000001600)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000001540)={0x10, 0x0, 0x0, 0x100001}, 0xc, &(0x7f0000001a80)={&(0x7f0000001640)={0x40c, r3, 0x400, 0x70bd29, 0x25dfdbfe, {}, [{{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x400}}}]}}, {{0x8}, {0xb4, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x40}}, {0x8}}}]}}, {{0x8, 0x1, r4}, {0xf4, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x401}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x7ff}}}]}}, {{0x8}, {0xec, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xffffffc0}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8, 0x1, r5}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}]}}]}, 0x40c}, 0x1, 0x0, 0x0, 0x4020}, 0x40800) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001b00)={'wlan1\x00'}) r6 = perf_event_open$cgroup(&(0x7f0000001b40)={0x4, 0x80, 0xcd, 0x81, 0xdd, 0x8, 0x0, 0x0, 0x284, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x610, 0x0, @perf_config_ext={0x0, 0xdb1}, 0x801, 0x2, 0x9, 0x5, 0x0, 0x9, 0xfffa, 0x0, 0x2, 0x0, 0x80000000}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0xa) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r2, 0x50009418, &(0x7f0000001c40)={{r6}, r1, 0xc, @inherit={0x58, &(0x7f0000001bc0)={0x0, 0x2, 0x1, 0x8f, {0x20, 0x7bfc, 0x6, 0x8001, 0xfffffffffffffff9}, [0x1000, 0x7fff]}}, @subvolid=0x80000001}) openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000002c40)='cpu.pressure\x00', 0x2, 0x0) r7 = io_uring_setup(0x4a6, &(0x7f0000002c80)={0x0, 0x4c01, 0x1, 0x1, 0x15b}) io_uring_enter(r7, 0x69f3, 0xd554, 0x1, &(0x7f0000002d00), 0x8) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000002d40), 0x2, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(r7, 0x1, 0x0, 0x0) 00:54:42 executing program 1: openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r0, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x6}]}, 0x20}, 0x1, 0x0, 0x0, 0x8050}, 0x0) r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000001c0), 0xffffffffffffffff) pipe2(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84800) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x30, r1, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0x8, 0x1, r3}, {0x8}, {0x8, 0x1, r4}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000040) r6 = openat$cgroup_procs(r2, &(0x7f0000000340)='tasks\x00', 0x2, 0x0) openat$cgroup_int(r3, &(0x7f0000000380)='blkio.throttle.read_iops_device\x00', 0x2, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r2, 0x40045402, &(0x7f00000003c0)=0x1) r7 = openat$sr(0xffffffffffffff9c, &(0x7f0000000400), 0x200, 0x0) openat$cgroup_netprio_ifpriomap(r7, &(0x7f0000000440), 0x2, 0x0) pipe2(&(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}, 0x104000) ioctl$SNDRV_TIMER_IOCTL_PVERSION(r9, 0x80045400, &(0x7f00000004c0)) ioctl$BTRFS_IOC_BALANCE_V2(r2, 0xc4009420, &(0x7f0000000500)={0x16, 0x7, {0x220, @usage=0x3ff, 0x0, 0x1, 0x5, 0x2, 0xd5a, 0x0, 0xc, @struct={0x3, 0x7fff}, 0x0, 0x0, [0x100000001, 0x6aa5, 0x1, 0xfffffffffffffffe, 0x6, 0x64]}, {0x101, @usage=0x8, 0x0, 0x3, 0xdf, 0xfffffffffffffffb, 0x8, 0x9, 0x79b3dc4e8d927eea, @struct={0x3, 0x6}, 0x2, 0x1f, [0xd733, 0xfffffffffffffffe, 0x3f, 0xfffffffffffffffe, 0x1, 0x1]}, {0xca, @struct={0x6, 0x50e}, 0x0, 0xea50, 0x6, 0x81, 0xffffffffa9474674, 0x80, 0x80, @struct={0x4, 0xe0a8}, 0x20, 0x9, [0x1, 0x3, 0x8375, 0x5, 0x6, 0x7]}, {0xff, 0x80, 0x38d}}) r10 = openat$full(0xffffffffffffff9c, &(0x7f0000000900), 0x20080, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r10, 0xc0145401, &(0x7f0000000940)={0x3, 0x0, 0x2, 0x0, 0x7}) r11 = pidfd_getfd(r8, r6, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r11, 0x8933, &(0x7f0000000980)) ioctl$BTRFS_IOC_BALANCE_V2(r5, 0xc4009420, &(0x7f0000002c40)={0x14, 0xd, {0x7, @struct={0xe84, 0x6}, 0x0, 0x8000, 0x365, 0x100, 0x9, 0x1, 0x44a, @struct={0x3, 0x1}, 0x9, 0x5ff, [0x3ff, 0x1, 0xf083, 0x0, 0x468f, 0x5]}, {0x8000, @usage=0x6, 0x0, 0x4, 0x6d, 0x0, 0x3, 0xffffffffffffffff, 0xa0, @usage=0x4, 0x1ff, 0x1, [0x5, 0xff, 0x4688, 0x4, 0x5]}, {0x80, @struct={0x0, 0xb622}, 0x0, 0x80, 0x6b33, 0xb2, 0xd330, 0x7, 0x60, @usage=0xffffffff, 0x67c, 0x1, [0x1, 0x5, 0x3, 0x7, 0xba, 0x7]}, {0x6, 0x6, 0x3}}) 00:54:42 executing program 2: r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, r0, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_PAN_ID={0x6}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0xfffe}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x707ebdad1af3dcd0}, 0x8004) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000440)={&(0x7f0000000200)={0x23c, 0x0, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_DEVKEY={0x228, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x34, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x10}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x9}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x2}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0x200}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0xfffffffc}, @NL802154_DEVKEY_ATTR_ID={0xac, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x597}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x3c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0x1aabf}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8000}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x40, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa3}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}]}]}, @NL802154_DEVKEY_ATTR_ID={0x11c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x38, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}]}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x4c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x2c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}]}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8722}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x44, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}]}]}]}]}, 0x23c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20004000) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x2c, r0, 0x20, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_MAX_BE={0x5, 0x10, 0x1}, @NL802154_ATTR_MIN_BE={0x5, 0x11, 0x5}, @NL802154_ATTR_MIN_BE={0x5}]}, 0x2c}}, 0x8800) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000600)={'wpan3\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'wpan1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(r3, &(0x7f0000000740)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0xf26486462bf78dc1}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x34, r0, 0x10, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x7}]}, 0x34}, 0x1, 0x0, 0x0, 0x4008050}, 0x80) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f00000007c0)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r7, &(0x7f0000000980)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000940)={&(0x7f0000000800)={0x140, 0x0, 0x4, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x1f, 0x5}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x1f, 0x5}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_SEC_OUT_KEY_ID={0xc8, 0x20, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x34, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x81}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x5c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x5}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x21, 0x10000}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x21, 0x9}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x24, 0x20, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xfff}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x6}]}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x1f, 0x6}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x1f, 0x2}]}, 0x140}, 0x1, 0x0, 0x0, 0x200048e0}, 0x4000) r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000a00), r7) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x20, r9, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x880}, 0x200408c0) r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000b40), r7) sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r7, &(0x7f0000000c00)={&(0x7f0000000b00), 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x20, r10, 0x0, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x20}, 0x1, 0x0, 0x0, 0x28040000}, 0x81) ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000c80)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_DEV(r7, &(0x7f0000000d80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0xa3800080}, 0xc, &(0x7f0000000d40)={&(0x7f0000000cc0)={0x64, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_SEC_DEVICE={0x10, 0x23, 0x0, 0x1, {0xc, 0x4, {0xaaaaaaaaaaaa0102}}}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_SEC_DEVICE={0x10, 0x23, 0x0, 0x1, {0xc, 0x4, {0xaaaaaaaaaaaa0202}}}, @NL802154_ATTR_SEC_DEVICE={0x10, 0x23, 0x0, 0x1, {0xc, 0x4, {0xaaaaaaaaaaaa0302}}}]}, 0x64}, 0x1, 0x0, 0x0, 0x4008000}, 0x10) 00:54:42 executing program 4: r0 = eventfd2(0x8001, 0x801) ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f0000000000)={0x2, 0x6, @status={[0x9, 0x8, 0x982d, 0x7f, 0x10001, 0x80000001]}, [0x6eb3add4, 0x3, 0x0, 0x1000, 0x1f, 0xbce, 0x100000001, 0x7, 0xfffffffffffffffc, 0x8000000000000000, 0xc0000000, 0x8, 0x101, 0x8, 0xaaf, 0x101, 0x20, 0x7fffffff, 0x2, 0x4, 0x7, 0x71, 0x2, 0xffffffffffffff00, 0x6, 0x100000000, 0x620000, 0x10000, 0x9, 0x1, 0x4, 0x2, 0x80000000, 0x80000001, 0x100000001, 0x1, 0x6, 0x3, 0x20, 0x2, 0x1, 0xa6, 0x7, 0x2f, 0x7, 0x2, 0x2, 0x2d, 0x100000000, 0x5, 0x6, 0x80000001, 0xffffffffffffffc1, 0x7fff, 0x100000001, 0x4, 0xb4, 0xff, 0x7, 0xff, 0xc2, 0x8001, 0x95d2, 0xe35]}) pipe2(&(0x7f0000000a40)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80800) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000ac0)={0x3f, 0x0, &(0x7f0000000a80)=[r0, r0, r1, r0]}, 0x4) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r1, 0xa, 0x0, r3) pipe2(&(0x7f0000000b00)={0xffffffffffffffff, 0xffffffffffffffff}, 0x82000) kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r0, &(0x7f0000000b40)={r5, r1}) r6 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000b80), 0x800, 0x0) r7 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000bc0), 0x0, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(r4, 0x6, &(0x7f0000000c40)={0x2, 0x0, &(0x7f0000000c00)=[r1, r4, r6, 0xffffffffffffffff, r2, r7]}, 0x6) r8 = syz_io_uring_setup(0x1df9, &(0x7f0000000c80)={0x0, 0x7363, 0x2, 0x0, 0x1cb, 0x0, r4}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000d00), &(0x7f0000000d40)) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0x50, r8, 0x10000000) io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0) openat$cgroup_freezer_state(r1, &(0x7f0000000d80), 0x2, 0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000001800)={0x0, 0x9, 0x7, 0x1}) ioctl$BTRFS_IOC_SCRUB(r8, 0xc400941b, &(0x7f0000001c00)={r9, 0x1000, 0x400, 0x1}) r10 = socket$inet_udp(0x2, 0x2, 0x0) r11 = openat$cgroup_devices(r5, &(0x7f0000002000)='devices.deny\x00', 0x2, 0x0) io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000002040)=[r10, r11], 0x2) 00:54:42 executing program 3: r0 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) r1 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) mkdirat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz1\x00', 0x1ff) openat$cgroup_procs(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.threads\x00', 0x2, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x200002, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000001, 0x100010, 0xffffffffffffffff, 0x0) r4 = socket(0x28, 0xa, 0x7) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f0000000140)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r4, 0x90000000000, 0x0, 0x1, 0x0, 0x1, {0x0, r5}}, 0x7) io_uring_register$IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0xf) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup/syz1\x00', 0x200002, 0x0) openat$cgroup_freezer_state(r6, &(0x7f0000000280), 0x2, 0x0) r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r4) sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0x8c, r7, 0x800, 0x70bd29, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x2}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000c4}, 0x40010) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) semctl$SETALL(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000480)=[0x28, 0x1, 0xb0, 0x40, 0x4]) r8 = openat$full(0xffffffffffffff9c, &(0x7f00000004c0), 0x8000, 0x0) epoll_ctl$EPOLL_CTL_DEL(r8, 0x2, r2) epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r1, &(0x7f0000000500)={0x90000002}) openat$cgroup_netprio_ifpriomap(r2, &(0x7f0000000540), 0x2, 0x0) [ 110.843115] audit: type=1400 audit(1745456082.622:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 00:54:42 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_DEL_SEC_DEV(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x80, 0x0, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_DEVICE={0x10, 0x23, 0x0, 0x1, {0xc, 0x4, {0xaaaaaaaaaaaa0002}}}, @NL802154_ATTR_SEC_DEVICE={0x10, 0x23, 0x0, 0x1, {0xc}}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_SEC_DEVICE={0x10, 0x23, 0x0, 0x1, {0xc, 0x4, {0xaaaaaaaaaaaa0302}}}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x80}, 0x1, 0x0, 0x0, 0x20000010}, 0x40) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000140), r1) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x60, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x21, 0xffff0001}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x1f, 0x3}, @NL802154_ATTR_SEC_ENABLED={0x5, 0x1e, 0x1}, @NL802154_ATTR_SEC_ENABLED={0x5, 0x1e, 0x1}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x21, 0x81}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x1f, 0x4}]}, 0x60}, 0x1, 0x0, 0x0, 0x4040}, 0x20004000) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000300), r0) sendmsg$IEEE802154_LIST_IFACE(r1, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x60, r2, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x20}, 0x24000810) syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), r1) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x5c, r2, 0x20, 0x70bd25, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x6b1093ff4e66bab5}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000004}, 0x20000004) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000600)={'wpan1\x00', 0x0}) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), r0) sendmsg$IEEE802154_LLSEC_ADD_KEY(r0, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x1c, r5, 0x2, 0x70bd26, 0x25dfdbff, {}, [@IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa2}]}, 0x1c}}, 0x4008000) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl802154(&(0x7f00000007c0), r0) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r6, &(0x7f00000008c0)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x54, r7, 0x20, 0x70bd29, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x30, 0x20, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x2c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x9bf2efe951853db}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}]}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x20004004}, 0x2004) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000900), r8) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000980)={'wpan3\x00', 0x0}) sendmsg$IEEE802154_LLSEC_DEL_DEV(r1, &(0x7f0000000a80)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000a40)={&(0x7f00000009c0)={0x54, r2, 0x4, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r9}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x40008000}, 0x885) 00:54:42 executing program 6: r0 = semget$private(0x0, 0x3, 0x8) semop(r0, &(0x7f0000000000)=[{0x1, 0x7, 0x800}, {0x3, 0xf801, 0x1800}, {0x1, 0x7f, 0x800}, {0x4, 0x8}, {0x2, 0x2, 0x800}, {0x0, 0x1000, 0x1000}, {0x4, 0xfd8d, 0x800}], 0x7) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000040)=[{0x0, 0x19, 0x1800}, {0x3, 0x4ea, 0x1000}, {0x3, 0x5, 0x1000}, {0x0, 0x7}, {0x1, 0x0, 0x800}, {0x4, 0x0, 0x800}, {0x0, 0x7, 0x1800}], 0x7, &(0x7f00000000c0)={r1, r2+10000000}) r3 = semget$private(0x0, 0x0, 0x240) semop(r3, &(0x7f0000000100)=[{0x6, 0x800, 0x2000}, {0x3, 0x1, 0x800}, {0x0, 0x1f, 0x1000}, {0x0, 0x7, 0x800}], 0x4) r4 = semget(0x1, 0x3, 0x109) semctl$IPC_STAT(r4, 0x0, 0x2, &(0x7f0000000140)=""/160) semctl$GETALL(r0, 0x0, 0xd, &(0x7f0000000200)) semctl$IPC_SET(r4, 0x0, 0x1, &(0x7f0000000240)={{0x0, 0x0, 0xee01, 0xee00, 0xffffffffffffffff, 0x22, 0x1}, 0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7}) r5 = semget$private(0x0, 0x2, 0x404) semop(r5, &(0x7f00000002c0)=[{0x4, 0x8, 0x1800}, {0x2, 0x20, 0x1800}, {0x1, 0x7, 0x800}], 0x3) semctl$GETALL(r0, 0x0, 0xd, &(0x7f0000000300)=""/145) r6 = semget(0x3, 0x4, 0x9) semctl$IPC_RMID(r6, 0x0, 0x0) r7 = semget$private(0x0, 0x3, 0x0) semop(r7, &(0x7f00000003c0)=[{0x3, 0x3, 0x1800}, {0x0, 0x0, 0x1800}, {0x2, 0x6, 0x1000}, {0x3, 0x0, 0x1000}, {0x0, 0x6ec, 0x1000}, {0x4, 0x1f, 0x1800}, {0x0, 0x59, 0x1000}, {0x0, 0xfff8, 0x800}], 0x8) semctl$SEM_INFO(r5, 0x3, 0x13, &(0x7f0000000400)=""/42) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r8, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, 0x0, 0x300, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4008001}, 0x2000000) 00:54:42 executing program 7: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x58, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x9}, @NL802154_ATTR_CCA_ED_LEVEL={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x8}]}, 0x58}, 0x1, 0x0, 0x0, 0x8004}, 0x8000) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), r0) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r2, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x44c02000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r3, 0x200, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x21, 0x81}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x21, 0x5}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x10, 0x20, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x6}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000) clock_gettime(0x2, &(0x7f0000000300)) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000340)={0x140000002}, 0xffffffffffffffff, 0x3, 0x0, 0x1, {0x0, r4}}, 0x24) sendmsg$NL802154_CMD_SET_CHANNEL(r2, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x30, r3, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x13}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x2400080b) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000500), r2) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000540)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r5, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x5c, r6, 0x400, 0x70bd29, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_SEC_DEVKEY={0x28, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0002}}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}]}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x1}, 0x4000000) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000006c0)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f0000000840)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000800)={&(0x7f0000000700)={0xf8, r3, 0x300, 0x70bd2c, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_SEC_DEVKEY={0xc8, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x18, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x401}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}, @NL802154_DEVKEY_ATTR_ID={0x18, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x3}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x1}, @NL802154_DEVKEY_ATTR_ID={0x38, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x8}, @NL802154_DEVKEY_ATTR_ID={0x34, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xfd}, @NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0xf8}, 0x1, 0x0, 0x0, 0x840}, 0x2000040) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000880), 0x2, 0x0) openat$cgroup(0xffffffffffffffff, &(0x7f00000008c0)='syz0\x00', 0x200002, 0x0) prctl$PR_GET_FP_MODE(0x2e) sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000000a40)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000a00)={&(0x7f0000000980)={0x4c, 0x0, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x4}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x1}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48040}, 0x20000000) [ 112.226548] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 112.229535] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 112.232054] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 112.237605] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 112.243398] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 112.310249] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 112.313136] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 112.315469] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 112.318055] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 112.321659] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 112.324561] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 112.328385] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 112.337651] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 112.351624] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 112.359205] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 112.380535] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 112.387111] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 112.399078] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 112.464995] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 112.467604] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 112.472497] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 112.477840] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 112.481265] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 112.497744] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 112.503069] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 112.507898] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 112.510200] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 112.512780] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 112.514723] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 112.516207] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 112.519567] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 112.527073] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 112.534059] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 112.538441] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 112.545098] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 112.549762] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 112.555579] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 112.565274] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 112.608524] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 112.613249] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 114.317373] Bluetooth: hci0: command tx timeout [ 114.379848] Bluetooth: hci2: command tx timeout [ 114.442592] Bluetooth: hci1: command tx timeout [ 114.571905] Bluetooth: hci3: command tx timeout [ 114.699342] Bluetooth: hci5: command tx timeout [ 114.700560] Bluetooth: hci4: command tx timeout [ 114.700775] Bluetooth: hci7: command tx timeout [ 114.763202] Bluetooth: hci6: command tx timeout [ 116.361901] Bluetooth: hci0: command tx timeout [ 116.427045] Bluetooth: hci2: command tx timeout [ 116.489911] Bluetooth: hci1: command tx timeout [ 116.618522] Bluetooth: hci3: command tx timeout [ 116.746071] Bluetooth: hci4: command tx timeout [ 116.746549] Bluetooth: hci5: command tx timeout [ 116.747371] Bluetooth: hci7: command tx timeout [ 116.810107] Bluetooth: hci6: command tx timeout [ 118.410010] Bluetooth: hci0: command tx timeout [ 118.474085] Bluetooth: hci2: command tx timeout [ 118.540128] Bluetooth: hci1: command tx timeout [ 118.665949] Bluetooth: hci3: command tx timeout [ 118.794193] Bluetooth: hci5: command tx timeout [ 118.794680] Bluetooth: hci7: command tx timeout [ 118.794708] Bluetooth: hci4: command tx timeout [ 118.860880] Bluetooth: hci6: command tx timeout [ 120.459212] Bluetooth: hci0: command tx timeout [ 120.522015] Bluetooth: hci2: command tx timeout [ 120.585999] Bluetooth: hci1: command tx timeout [ 120.714165] Bluetooth: hci3: command tx timeout [ 120.842070] Bluetooth: hci5: command tx timeout [ 120.842154] Bluetooth: hci4: command tx timeout [ 120.842553] Bluetooth: hci7: command tx timeout [ 120.905875] Bluetooth: hci6: command tx timeout [ 175.013192] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 175.016749] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 175.019140] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 175.027439] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 175.032449] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 175.221263] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 175.224700] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 175.234371] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 175.248125] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 175.263124] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 175.266288] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 175.274325] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 175.284970] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 175.287970] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 175.303334] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 175.305504] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 175.308413] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 175.316609] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 175.335572] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 175.342091] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 175.404824] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 175.413313] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 175.423296] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 175.436293] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 175.448046] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 175.522914] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 175.525088] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 175.531344] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 175.533344] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 175.547863] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 175.549037] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 175.555286] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 175.567302] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 175.570176] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 175.587306] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 175.587634] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 175.596482] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 175.607161] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 175.631232] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 175.633449] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 177.098843] Bluetooth: hci0: command tx timeout [ 177.292139] Bluetooth: hci2: command tx timeout [ 177.418035] Bluetooth: hci4: command tx timeout [ 177.418736] Bluetooth: hci1: command tx timeout [ 177.545969] Bluetooth: hci3: command tx timeout [ 177.674028] Bluetooth: hci6: command tx timeout [ 177.737892] Bluetooth: hci5: command tx timeout [ 177.801888] Bluetooth: hci7: command tx timeout [ 179.146826] Bluetooth: hci0: command tx timeout [ 179.337860] Bluetooth: hci2: command tx timeout [ 179.465933] Bluetooth: hci1: command tx timeout [ 179.466418] Bluetooth: hci4: command tx timeout [ 179.595007] Bluetooth: hci3: command tx timeout [ 179.722366] Bluetooth: hci6: command tx timeout [ 179.785924] Bluetooth: hci5: command tx timeout [ 179.850890] Bluetooth: hci7: command tx timeout [ 181.194204] Bluetooth: hci0: command tx timeout [ 181.386143] Bluetooth: hci2: command tx timeout [ 181.514901] Bluetooth: hci1: command tx timeout [ 181.515341] Bluetooth: hci4: command tx timeout [ 181.642124] Bluetooth: hci3: command tx timeout [ 181.769892] Bluetooth: hci6: command tx timeout [ 181.834105] Bluetooth: hci5: command tx timeout [ 181.898049] Bluetooth: hci7: command tx timeout [ 183.243851] Bluetooth: hci0: command tx timeout [ 183.433860] Bluetooth: hci2: command tx timeout [ 183.563911] Bluetooth: hci4: command tx timeout [ 183.564355] Bluetooth: hci1: command tx timeout [ 183.689887] Bluetooth: hci3: command tx timeout [ 183.818108] Bluetooth: hci6: command tx timeout [ 183.881868] Bluetooth: hci5: command tx timeout [ 183.947037] Bluetooth: hci7: command tx timeout [ 237.155481] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 237.160052] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 237.165466] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 237.171569] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 237.176394] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 237.184539] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 237.189829] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 237.192020] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 237.200442] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 237.204305] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 237.336359] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 237.344705] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 237.345139] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 237.356944] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 237.364279] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 237.369454] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 237.370815] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 237.378107] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 237.382227] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 237.388671] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 237.419573] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 237.441068] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 237.444150] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 237.456241] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 237.478139] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 237.486364] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 237.491540] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 237.496435] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 237.505215] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 237.512326] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 237.562186] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 237.568424] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 237.579191] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 237.620205] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 237.633440] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 237.801002] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 237.808739] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 237.811483] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 237.819279] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 237.824227] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 239.241998] Bluetooth: hci1: command tx timeout [ 239.306926] Bluetooth: hci0: command tx timeout [ 239.497881] Bluetooth: hci2: command tx timeout [ 239.498562] Bluetooth: hci3: command tx timeout [ 239.561881] Bluetooth: hci4: command tx timeout [ 239.689867] Bluetooth: hci5: command tx timeout [ 239.881939] Bluetooth: hci6: command tx timeout [ 240.201902] Bluetooth: hci7: command tx timeout [ 241.290433] Bluetooth: hci1: command tx timeout [ 241.353915] Bluetooth: hci0: command tx timeout [ 241.546033] Bluetooth: hci2: command tx timeout [ 241.546513] Bluetooth: hci3: command tx timeout [ 241.611157] Bluetooth: hci4: command tx timeout [ 241.739170] Bluetooth: hci5: command tx timeout [ 241.929864] Bluetooth: hci6: command tx timeout [ 242.251830] Bluetooth: hci7: command tx timeout [ 243.338943] Bluetooth: hci1: command tx timeout [ 243.402178] Bluetooth: hci0: command tx timeout [ 243.596894] Bluetooth: hci3: command tx timeout [ 243.597375] Bluetooth: hci2: command tx timeout [ 243.657865] Bluetooth: hci4: command tx timeout [ 243.785870] Bluetooth: hci5: command tx timeout [ 243.978519] Bluetooth: hci6: command tx timeout [ 244.299819] Bluetooth: hci7: command tx timeout [ 245.385905] Bluetooth: hci1: command tx timeout [ 245.451207] Bluetooth: hci0: command tx timeout [ 245.642879] Bluetooth: hci2: command tx timeout [ 245.643364] Bluetooth: hci3: command tx timeout [ 245.705872] Bluetooth: hci4: command tx timeout [ 245.835303] Bluetooth: hci5: command tx timeout [ 246.026058] Bluetooth: hci6: command tx timeout [ 246.345853] Bluetooth: hci7: command tx timeout [ 297.683714] syz-executor.0 (5490) used greatest stack depth: 24592 bytes left [ 299.999514] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 300.004584] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 300.008511] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 300.024092] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 300.034562] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 300.148687] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 300.154533] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 300.158584] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 300.168228] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 300.175612] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 300.194610] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 300.200091] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 300.205181] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 300.213455] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 300.219697] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 300.263123] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 300.275428] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 300.283888] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 300.305171] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 300.319505] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 300.349495] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 300.367005] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 300.368990] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 300.376573] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 300.384635] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 300.410164] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 300.416179] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 300.419650] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 300.422662] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 300.424424] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 300.436372] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 300.439176] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 300.441560] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 300.443318] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 300.457160] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 300.467042] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 300.473037] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 300.500291] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 300.508079] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 300.554204] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 302.090113] Bluetooth: hci0: command tx timeout [ 302.282103] Bluetooth: hci1: command tx timeout [ 302.282127] Bluetooth: hci2: command tx timeout [ 302.409915] Bluetooth: hci3: command tx timeout [ 302.538934] Bluetooth: hci4: command tx timeout [ 302.602886] Bluetooth: hci5: command tx timeout [ 302.666112] Bluetooth: hci6: command tx timeout [ 302.666144] Bluetooth: hci7: command tx timeout [ 304.138056] Bluetooth: hci0: command tx timeout [ 304.330920] Bluetooth: hci2: command tx timeout [ 304.331125] Bluetooth: hci1: command tx timeout [ 304.459381] Bluetooth: hci3: command tx timeout [ 304.586019] Bluetooth: hci4: command tx timeout [ 304.650102] Bluetooth: hci5: command tx timeout [ 304.713959] Bluetooth: hci6: command tx timeout [ 304.714853] Bluetooth: hci7: command tx timeout [ 306.187341] Bluetooth: hci0: command tx timeout [ 306.378486] Bluetooth: hci2: command tx timeout [ 306.379365] Bluetooth: hci1: command tx timeout [ 306.506370] Bluetooth: hci3: command tx timeout [ 306.633968] Bluetooth: hci4: command tx timeout [ 306.698854] Bluetooth: hci5: command tx timeout [ 306.762943] Bluetooth: hci7: command tx timeout [ 306.763750] Bluetooth: hci6: command tx timeout [ 308.233904] Bluetooth: hci0: command tx timeout [ 308.425897] Bluetooth: hci2: command tx timeout [ 308.427740] Bluetooth: hci1: command tx timeout [ 308.554832] Bluetooth: hci3: command tx timeout [ 308.683125] Bluetooth: hci4: command tx timeout [ 308.745856] Bluetooth: hci5: command tx timeout [ 308.811082] Bluetooth: hci7: command tx timeout [ 308.811151] Bluetooth: hci6: command tx timeout [ 362.403961] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 362.407576] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 362.410103] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 362.423696] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 362.430393] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 362.725083] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 362.732589] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 362.735731] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 362.744641] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 362.751583] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 362.787951] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 362.793324] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 362.796348] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 362.812461] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 362.816822] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 362.849019] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 362.859323] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 362.862452] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 362.876062] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 362.906880] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 362.913044] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 362.915213] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 362.920054] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 362.932989] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 362.944345] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 363.132634] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 363.159863] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 363.193702] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 363.194440] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 363.200020] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 363.204267] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 363.209565] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 363.226857] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 363.238363] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 363.242974] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 363.305657] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 363.317593] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 363.354327] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 363.359502] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 363.384663] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 364.491614] Bluetooth: hci0: command tx timeout [ 364.811217] Bluetooth: hci1: command tx timeout [ 364.875902] Bluetooth: hci2: command tx timeout [ 365.002041] Bluetooth: hci4: command tx timeout [ 365.194975] Bluetooth: hci3: command tx timeout [ 365.451847] Bluetooth: hci7: command tx timeout [ 365.514402] Bluetooth: hci5: command tx timeout [ 365.515086] Bluetooth: hci6: command tx timeout [ 366.538051] Bluetooth: hci0: command tx timeout [ 366.859174] Bluetooth: hci1: command tx timeout [ 366.922894] Bluetooth: hci2: command tx timeout [ 367.049835] Bluetooth: hci4: command tx timeout [ 367.243082] Bluetooth: hci3: command tx timeout [ 367.498907] Bluetooth: hci7: command tx timeout [ 367.563810] Bluetooth: hci6: command tx timeout [ 367.564009] Bluetooth: hci5: command tx timeout [ 368.587914] Bluetooth: hci0: command tx timeout [ 368.906983] Bluetooth: hci1: command tx timeout [ 368.969930] Bluetooth: hci2: command tx timeout [ 369.097896] Bluetooth: hci4: command tx timeout [ 369.290881] Bluetooth: hci3: command tx timeout [ 369.546880] Bluetooth: hci7: command tx timeout [ 369.609872] Bluetooth: hci5: command tx timeout [ 369.610861] Bluetooth: hci6: command tx timeout [ 370.633919] Bluetooth: hci0: command tx timeout [ 370.954855] Bluetooth: hci1: command tx timeout [ 371.019053] Bluetooth: hci2: command tx timeout [ 371.145996] Bluetooth: hci4: command tx timeout [ 371.338885] Bluetooth: hci3: command tx timeout [ 371.596813] Bluetooth: hci7: command tx timeout [ 371.657941] Bluetooth: hci6: command tx timeout [ 371.658429] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 00:59:44 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff818c4678 RDX=ffff8880136fd340 RSI=ffffffff818c487f RDI=0000000000000005 RBP=ffff888013551380 RSP=ffff888026e87b68 R8 =0000000000000000 R9 =fffffbfff0c81dc2 R10=0000000000000001 R11=0000000000000000 R12=ffff888013551880 R13=0000000000000000 R14=0000000000000000 R15=ffff888026e87d90 RIP=ffffffff815a78fc RFL=00000203 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1cbfcb3540 00000000 00000000 GS =0000 ffff8880e564e000 00000000 00000000 LDT=0000 fffffe2c00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1cbfeb7d5c CR3=0000000035398000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffff00ffffffffffffffffffffff00ff XMM02=4c4700362e322e325f4342494c470035 XMM03=00000000000000000000000000470035 XMM04=4342494c4700362e322e325f4342494c XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffed10013660b9 RBX=ffff888009b305c8 RCX=0000000000000000 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffed10013660d6 RBP=00000000000000e8 RSP=ffff8880240b7b08 R8 =0000000000000007 R9 =0000000000000001 R10=ffffed10013660b9 R11=00000000ffffffff R12=ffff888009b305c8 R13=0000000000092cc0 R14=00000000000000e8 R15=0000000000092cc0 RIP=ffffffff84addd0d RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007faa730cf540 00000000 00000000 GS =0000 ffff8880e574e000 00000000 00000000 LDT=0000 fffffe2c00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007faa732b9810 CR3=0000000024d74000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000