Warning: Permanently added '[localhost]:25850' (ECDSA) to the list of known hosts.
2022/10/01 20:39:24 fuzzer started
2022/10/01 20:39:25 dialing manager at localhost:35095
syzkaller login: [   44.198595] cgroup: Unknown subsys name 'net'
[   44.330677] cgroup: Unknown subsys name 'rlimit'
2022/10/01 20:39:38 syscalls: 2215
2022/10/01 20:39:38 code coverage: enabled
2022/10/01 20:39:38 comparison tracing: enabled
2022/10/01 20:39:38 extra coverage: enabled
2022/10/01 20:39:38 setuid sandbox: enabled
2022/10/01 20:39:38 namespace sandbox: enabled
2022/10/01 20:39:38 Android sandbox: enabled
2022/10/01 20:39:38 fault injection: enabled
2022/10/01 20:39:38 leak checking: enabled
2022/10/01 20:39:38 net packet injection: enabled
2022/10/01 20:39:38 net device setup: enabled
2022/10/01 20:39:38 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/01 20:39:38 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/01 20:39:38 USB emulation: enabled
2022/10/01 20:39:38 hci packet injection: enabled
2022/10/01 20:39:38 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/01 20:39:38 802.15.4 emulation: enabled
2022/10/01 20:39:38 fetching corpus: 50, signal 29127/30883 (executing program)
2022/10/01 20:39:38 fetching corpus: 100, signal 39193/42541 (executing program)
2022/10/01 20:39:38 fetching corpus: 150, signal 46649/51501 (executing program)
2022/10/01 20:39:39 fetching corpus: 200, signal 52649/58944 (executing program)
2022/10/01 20:39:39 fetching corpus: 250, signal 60603/68170 (executing program)
2022/10/01 20:39:39 fetching corpus: 300, signal 64187/73048 (executing program)
2022/10/01 20:39:39 fetching corpus: 350, signal 67813/77950 (executing program)
2022/10/01 20:39:39 fetching corpus: 400, signal 71504/82887 (executing program)
2022/10/01 20:39:39 fetching corpus: 450, signal 74511/87085 (executing program)
2022/10/01 20:39:39 fetching corpus: 500, signal 77164/90933 (executing program)
2022/10/01 20:39:39 fetching corpus: 550, signal 82305/97018 (executing program)
2022/10/01 20:39:40 fetching corpus: 600, signal 87311/102875 (executing program)
2022/10/01 20:39:40 fetching corpus: 650, signal 90754/107288 (executing program)
2022/10/01 20:39:40 fetching corpus: 700, signal 95226/112572 (executing program)
2022/10/01 20:39:40 fetching corpus: 750, signal 97948/116191 (executing program)
2022/10/01 20:39:40 fetching corpus: 800, signal 101210/120245 (executing program)
2022/10/01 20:39:40 fetching corpus: 850, signal 102778/122812 (executing program)
2022/10/01 20:39:40 fetching corpus: 900, signal 105313/126117 (executing program)
2022/10/01 20:39:41 fetching corpus: 950, signal 106482/128282 (executing program)
2022/10/01 20:39:41 fetching corpus: 1000, signal 108827/131474 (executing program)
2022/10/01 20:39:41 fetching corpus: 1050, signal 110161/133704 (executing program)
2022/10/01 20:39:41 fetching corpus: 1100, signal 112036/136381 (executing program)
2022/10/01 20:39:41 fetching corpus: 1150, signal 113555/138747 (executing program)
2022/10/01 20:39:41 fetching corpus: 1200, signal 114903/140891 (executing program)
2022/10/01 20:39:41 fetching corpus: 1250, signal 116925/143598 (executing program)
2022/10/01 20:39:41 fetching corpus: 1300, signal 118745/146085 (executing program)
2022/10/01 20:39:42 fetching corpus: 1350, signal 121035/148933 (executing program)
2022/10/01 20:39:42 fetching corpus: 1400, signal 123401/151815 (executing program)
2022/10/01 20:39:42 fetching corpus: 1450, signal 125335/154286 (executing program)
2022/10/01 20:39:42 fetching corpus: 1500, signal 127227/156687 (executing program)
2022/10/01 20:39:42 fetching corpus: 1550, signal 129526/159401 (executing program)
2022/10/01 20:39:42 fetching corpus: 1600, signal 131130/161522 (executing program)
2022/10/01 20:39:42 fetching corpus: 1650, signal 131997/163116 (executing program)
2022/10/01 20:39:43 fetching corpus: 1700, signal 133739/165332 (executing program)
2022/10/01 20:39:43 fetching corpus: 1750, signal 135767/167673 (executing program)
2022/10/01 20:39:43 fetching corpus: 1800, signal 138035/170237 (executing program)
2022/10/01 20:39:43 fetching corpus: 1850, signal 139088/171867 (executing program)
2022/10/01 20:39:43 fetching corpus: 1900, signal 140192/173526 (executing program)
2022/10/01 20:39:43 fetching corpus: 1950, signal 141943/175637 (executing program)
2022/10/01 20:39:43 fetching corpus: 2000, signal 143721/177758 (executing program)
2022/10/01 20:39:43 fetching corpus: 2050, signal 145301/179648 (executing program)
2022/10/01 20:39:44 fetching corpus: 2100, signal 146310/181227 (executing program)
2022/10/01 20:39:44 fetching corpus: 2150, signal 147452/182810 (executing program)
2022/10/01 20:39:44 fetching corpus: 2200, signal 149200/184798 (executing program)
2022/10/01 20:39:44 fetching corpus: 2250, signal 150262/186303 (executing program)
2022/10/01 20:39:44 fetching corpus: 2300, signal 151584/187939 (executing program)
2022/10/01 20:39:44 fetching corpus: 2350, signal 153162/189733 (executing program)
2022/10/01 20:39:44 fetching corpus: 2400, signal 154209/191129 (executing program)
2022/10/01 20:39:44 fetching corpus: 2450, signal 154927/192301 (executing program)
2022/10/01 20:39:45 fetching corpus: 2500, signal 156102/193783 (executing program)
2022/10/01 20:39:45 fetching corpus: 2550, signal 156991/195042 (executing program)
2022/10/01 20:39:45 fetching corpus: 2600, signal 157957/196352 (executing program)
2022/10/01 20:39:45 fetching corpus: 2650, signal 158644/197471 (executing program)
2022/10/01 20:39:45 fetching corpus: 2700, signal 160135/199092 (executing program)
2022/10/01 20:39:45 fetching corpus: 2750, signal 160915/200246 (executing program)
2022/10/01 20:39:45 fetching corpus: 2800, signal 162921/202087 (executing program)
2022/10/01 20:39:45 fetching corpus: 2850, signal 163730/203208 (executing program)
2022/10/01 20:39:46 fetching corpus: 2900, signal 165460/204830 (executing program)
2022/10/01 20:39:46 fetching corpus: 2950, signal 166273/205920 (executing program)
2022/10/01 20:39:46 fetching corpus: 3000, signal 166911/206947 (executing program)
2022/10/01 20:39:46 fetching corpus: 3050, signal 167655/207946 (executing program)
2022/10/01 20:39:46 fetching corpus: 3100, signal 168363/208933 (executing program)
2022/10/01 20:39:46 fetching corpus: 3150, signal 168964/209906 (executing program)
2022/10/01 20:39:46 fetching corpus: 3200, signal 170196/211201 (executing program)
2022/10/01 20:39:46 fetching corpus: 3250, signal 171420/212431 (executing program)
2022/10/01 20:39:47 fetching corpus: 3300, signal 172230/213434 (executing program)
2022/10/01 20:39:47 fetching corpus: 3350, signal 172779/214311 (executing program)
2022/10/01 20:39:47 fetching corpus: 3400, signal 173441/215232 (executing program)
2022/10/01 20:39:47 fetching corpus: 3450, signal 174529/216299 (executing program)
2022/10/01 20:39:47 fetching corpus: 3500, signal 175413/217359 (executing program)
2022/10/01 20:39:47 fetching corpus: 3550, signal 176012/218218 (executing program)
2022/10/01 20:39:47 fetching corpus: 3600, signal 176788/219154 (executing program)
2022/10/01 20:39:47 fetching corpus: 3650, signal 178039/220287 (executing program)
2022/10/01 20:39:47 fetching corpus: 3700, signal 178598/221083 (executing program)
2022/10/01 20:39:48 fetching corpus: 3750, signal 179213/221927 (executing program)
2022/10/01 20:39:48 fetching corpus: 3800, signal 179907/222740 (executing program)
2022/10/01 20:39:48 fetching corpus: 3850, signal 180800/223645 (executing program)
2022/10/01 20:39:48 fetching corpus: 3900, signal 181538/224453 (executing program)
2022/10/01 20:39:48 fetching corpus: 3950, signal 181900/225125 (executing program)
2022/10/01 20:39:48 fetching corpus: 4000, signal 182399/225839 (executing program)
2022/10/01 20:39:48 fetching corpus: 4050, signal 183491/226754 (executing program)
2022/10/01 20:39:48 fetching corpus: 4100, signal 184072/227506 (executing program)
2022/10/01 20:39:48 fetching corpus: 4150, signal 184514/228299 (executing program)
2022/10/01 20:39:49 fetching corpus: 4200, signal 185031/228982 (executing program)
2022/10/01 20:39:49 fetching corpus: 4250, signal 186195/229891 (executing program)
2022/10/01 20:39:49 fetching corpus: 4300, signal 187190/230727 (executing program)
2022/10/01 20:39:49 fetching corpus: 4350, signal 189076/231746 (executing program)
2022/10/01 20:39:49 fetching corpus: 4400, signal 189711/232431 (executing program)
2022/10/01 20:39:49 fetching corpus: 4450, signal 190058/233050 (executing program)
2022/10/01 20:39:49 fetching corpus: 4500, signal 190562/233658 (executing program)
2022/10/01 20:39:49 fetching corpus: 4550, signal 190987/234254 (executing program)
2022/10/01 20:39:49 fetching corpus: 4600, signal 191948/234936 (executing program)
2022/10/01 20:39:50 fetching corpus: 4650, signal 192552/235541 (executing program)
2022/10/01 20:39:50 fetching corpus: 4700, signal 192877/236110 (executing program)
2022/10/01 20:39:50 fetching corpus: 4750, signal 193375/236710 (executing program)
2022/10/01 20:39:50 fetching corpus: 4800, signal 194147/237347 (executing program)
2022/10/01 20:39:50 fetching corpus: 4850, signal 194516/237934 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/238442 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/238884 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/239305 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/239721 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/240194 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/240660 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/241114 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/241520 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/241994 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/242458 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/242915 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/243352 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/243818 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/244266 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/244707 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/245137 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/245569 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/246001 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/246424 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/246863 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/247301 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/247726 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/248181 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/248594 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/249070 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/249531 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/249582 (executing program)
2022/10/01 20:39:50 fetching corpus: 4871, signal 194680/249582 (executing program)
2022/10/01 20:39:53 starting 8 fuzzer processes
20:39:53 executing program 0:
ioctl$FIONREAD(0xffffffffffffffff, 0x541b, &(0x7f0000000000))
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$KDSKBMODE(r0, 0x4b45, &(0x7f0000000040))
ioctl$GIO_UNISCRNMAP(r0, 0x4b69, &(0x7f0000000080)=""/132)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='memory.events\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000180)={0x0, @adiantum, 0x0, @desc3})
ioctl$TIOCMSET(r0, 0x5418, &(0x7f00000001c0)=0x7ff)
ioctl$TIOCEXCL(r1, 0x540c)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x900, 0x0)
ioctl$KDSKBLED(r2, 0x4b65, 0x0)
ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, &(0x7f0000000240)={0x6, 0x7})
r3 = syz_open_dev$vcsu(&(0x7f0000000280), 0x2, 0x8000)
ioctl$TIOCL_GETSHIFTSTATE(r3, 0x541c, &(0x7f00000002c0)={0x6, 0x1})
r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x127241, 0x0)
ioctl$TIOCSIG(r4, 0x40045436, 0x13)
getdents64(r2, &(0x7f0000000340)=""/222, 0xde)
ioctl$LOOP_SET_FD(r2, 0x4c00, r3)
ioctl$FS_IOC_GETFLAGS(r3, 0x80086601, &(0x7f0000000440))
r5 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000480), 0x103000, 0x0)
setsockopt$IP_VS_SO_SET_DEL(r5, 0x0, 0x484, &(0x7f00000004c0)={0x21, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e24, 0x2, 'sh\x00', 0x3a, 0x8, 0x41}, 0x2c)

20:39:53 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000780), 0x0, 0x10000)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000a80)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000800)={0x224, 0x0, 0x800, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0x210, 0x11d, 0x0, 0x1, [{0x5c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x6}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x76}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xfc}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x7ab2}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x6a}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}]}, {0x16c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x160, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x90, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x28, 0x2, [{0x5, 0x9}, {0x7, 0x8}, {0x3, 0x8}, {0x0, 0x4}, {0x1, 0xa}, {0x7, 0x4}, {0x3, 0x1}, {0x0, 0x6}, {0x0, 0x7}, {0x4, 0x1}, {0x1, 0xa}, {0x3, 0x1}, {0x6}, {0x5, 0x2}, {0x4, 0x3}, {0x3, 0x7}, {0x1}, {0x0, 0x4}, {0x5, 0xa}, {0x1, 0xa}, {0x6, 0x9}, {0x6}, {0x7, 0x1}, {0x7, 0xa}, {0x6, 0x9}, {0x4, 0x4}, {0x4, 0x9}, {0x0, 0x7}, {0x3, 0x8}, {0x7, 0x7}, {0x7, 0x6}, {0x1, 0x6}, {0x1, 0xa}, {0x3, 0x1}, {0x5}, {0x7, 0x5}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x5, 0x6, 0x4, 0x1ff, 0x2, 0x1]}}, @NL80211_TXRATE_HT={0x1e, 0x2, [{0x1, 0x4}, {0x0, 0x9}, {0x1, 0xa}, {0x6, 0x7}, {0x3, 0x7}, {0x6, 0x7}, {}, {0x2, 0xa}, {0x5, 0x4}, {0x5, 0x6}, {0x4, 0x8}, {0x0, 0x3}, {0x6, 0x3}, {0x7, 0x4}, {0x1, 0x2}, {0x0, 0x3}, {0x4, 0x3}, {0x7}, {0x7, 0x1}, {0x0, 0x3}, {0x5, 0x8}, {0x7, 0x7}, {0x4}, {0x2, 0x5}, {}, {0x2, 0x9}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0xb76, 0xfff, 0xff, 0x20, 0x4, 0x800, 0x3cb9]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3ff, 0x8001, 0x2, 0xe3, 0x81, 0x4, 0x6, 0xc24]}}]}, @NL80211_BAND_60GHZ={0x78, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x1, 0x126, 0x5dae, 0x291a, 0x5, 0x7, 0x5]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xaf4a, 0x437, 0x416, 0x0, 0x401, 0x6, 0x5, 0x4]}}, @NL80211_TXRATE_HT={0x25, 0x2, [{0x5, 0x5}, {0x4, 0x2}, {0x5, 0x7}, {0x3, 0x7}, {0x3, 0x3}, {0x1}, {0x5, 0x9}, {0x3, 0x9}, {0x4, 0x2}, {0x4, 0x8}, {0x5, 0x1}, {0x0, 0xa}, {0x3, 0x6}, {0x5, 0x4}, {0x1, 0xa}, {0x0, 0x6}, {0x3, 0x9}, {0x2, 0x8}, {0x0, 0xa}, {0x4, 0x2}, {0x2, 0xa}, {0x4, 0x9}, {0x2, 0x3}, {0x1, 0x3}, {0x1, 0x9}, {0x1, 0x6}, {0x6, 0x9}, {0x0, 0x6}, {0x2, 0x3}, {0x6, 0x7}, {0x2, 0x1}, {0x1, 0x8}, {0x1, 0x7}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x1, 0x0, 0x9, 0x3fa, 0x6, 0x200, 0x4]}}]}, @NL80211_BAND_5GHZ={0x54, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x3}, @NL80211_TXRATE_HT={0x47, 0x2, [{0x1, 0x9}, {0x3, 0x4}, {0x2, 0xa}, {0x2, 0x3}, {0x3, 0x9}, {0x6, 0x7}, {0x4, 0x5}, {0x6, 0x8}, {0x7, 0x2}, {0x2}, {0x7, 0x3}, {0x3, 0x4}, {0x3, 0x2}, {0x4, 0x3}, {0x1, 0x5}, {0x5, 0x8}, {0x1, 0x4}, {0x5, 0x7}, {0x3, 0x2}, {0x0, 0x1}, {0x6}, {0x6, 0x8}, {}, {0x5, 0x2}, {0x2, 0x3}, {0x7, 0x6}, {0x0, 0x1}, {0x7, 0x6}, {0x5, 0x2}, {0x4, 0x2}, {0x1, 0x5}, {0x7, 0x2}, {0x2, 0x8}, {0x5, 0x8}, {0x0, 0x7}, {0x4, 0x7}, {0x0, 0x9}, {0x3, 0x2}, {0x1, 0xa}, {0x5, 0x5}, {0x1, 0x2}, {0x2, 0x2}, {0x7, 0x5}, {0x7, 0x1}, {0x0, 0x3}, {0x5, 0x3}, {0x5, 0xa}, {0x1, 0x9}, {0x3, 0x6}, {0x4, 0x7}, {0x6, 0x3}, {0x1, 0x4}, {0x0, 0x1}, {0x4, 0x4}, {0x6, 0x3}, {0x5, 0x4}, {0x1, 0x8}, {0x0, 0xa}, {0x3, 0x7}, {0x0, 0x2}, {0x6, 0x5}, {0x5, 0x5}, {0x4, 0xa}, {0x5, 0x5}, {0x7, 0x2}, {0x4, 0x3}, {0x6}]}]}]}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x2}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x80000001}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}]}]}]}, 0x224}, 0x1, 0x0, 0x0, 0x4040015}, 0x20048849)
socket$netlink(0x10, 0x3, 0x4)
r1 = dup3(r0, r0, 0x0)
sendmsg$NL80211_CMD_STOP_NAN(r1, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x20, 0x0, 0x400, 0x70bd25, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x5, 0x10}}}}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x4004040)
r2 = socket$netlink(0x10, 0x3, 0x12)
sendmsg$NL80211_CMD_DISASSOCIATE(r2, &(0x7f0000000e40)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000e00)={&(0x7f0000000c00)={0x1e8, 0x0, 0x400, 0x70bd2c, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x1, 0x56}}}}, [@NL80211_ATTR_IE={0x1c6, 0x2a, [@ibss={0x6, 0x2, 0x5a67}, @mesh_chsw={0x76, 0x6, {0x6, 0x1, 0x41, 0x9}}, @erp={0x2a, 0x1, {0x0, 0x0, 0x1}}, @cf={0x4, 0x6, {0x7, 0x80, 0x7, 0x80}}, @perr={0x84, 0xd7, {0x2, 0xf, [@not_ext={{}, @device_a, 0x0, "", 0xf}, @ext={{}, @device_b, 0x7, @broadcast, 0x20}, @not_ext={{}, @device_b, 0x9, "", 0x35}, @not_ext={{}, @device_a, 0x80, "", 0x15}, @not_ext={{}, @broadcast, 0x7f, "", 0x27}, @ext={{}, @device_a, 0x3f, @device_a, 0x3b}, @not_ext={{}, @device_a, 0xe88c}, @not_ext={{}, @device_a, 0x7ff, "", 0x21}, @not_ext={{}, @device_a, 0x1000, "", 0x23}, @ext={{}, @device_b, 0x0, @device_a, 0x23}, @not_ext={{}, @device_b, 0x1, "", 0x24}, @not_ext={{}, @broadcast, 0x2, "", 0x23}, @not_ext={{}, @device_a, 0x1, "", 0x3d}, @not_ext={{}, @device_b, 0x6, "", 0x14}, @not_ext={{}, @device_b, 0xbe, "", 0x6}]}}, @random_vendor={0xdd, 0x95, "8a5d75d95558f465d140b7a964370e6edafd9c3719ef555d052bdd601c70b52aa62320ca91e6f3b9f72186c4b5cbec1276a4439b0ebbc7e5026018255774fdd64dda7c88d909253cce048babe96f529915fc4dc44690c3eef359e64e228bf5218500fee505f3b351949f1d4f88300fdb91399db5e9d03232bf008e78f894e8f5bfd19e1e7aebee444debd85af0e0eaf058ef406007"}, @channel_switch={0x25, 0x3, {0x1, 0xb7, 0x8}}, @mic={0x8c, 0x18, {0xfb3, "45239bdfc9ed", @long="a715f416cf67bac618fdd09204aafca5"}}, @ht={0x2d, 0x1a, {0x1, 0x3, 0x4, 0x0, {0x4, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1}, 0x6, 0x9c6b, 0x1}}]}]}, 0x1e8}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)
r3 = openat(r1, &(0x7f0000000e80)='./file0\x00', 0x10002, 0x79)
getsockopt$SO_COOKIE(r3, 0x1, 0x39, &(0x7f0000000ec0), &(0x7f0000000f00)=0x8)
r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000f40), 0x44280, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f0000001040)={&(0x7f0000000f80)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000fc0)={0x2c, 0x0, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40050}, 0x8000)
sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x3001}, 0xc, &(0x7f0000001140)={&(0x7f00000010c0)={0x5c, 0x0, 0x200, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x7, 0x2c}}}}, [@NL80211_ATTR_STA_WME={0x34, 0x81, [@NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x9}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x5}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x5f}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x6}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x80}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x1}]}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x50e}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000400}, 0xc000)
r5 = syz_open_dev$mouse(&(0x7f00000011c0), 0x7, 0x101a0)
sendmsg$DEVLINK_CMD_RATE_GET(r5, &(0x7f0000001300)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000012c0)={&(0x7f0000001240)={0x44, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}]}, 0x44}, 0x1, 0x0, 0x0, 0x884}, 0x4000001)
ioctl$HIDIOCGNAME(r4, 0x80404806, &(0x7f0000001340))
r6 = syz_open_dev$vcsu(&(0x7f0000001380), 0xffffffffffffffc0, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001400), r3)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f0000001500)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000014c0)={&(0x7f0000001440)={0x74, r7, 0x800, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x77f6, 0x12}}}}, [@NL80211_ATTR_SCHED_SCAN_MATCH={0x4c, 0x84, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ap_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @random="7e88cbf011b4"}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ap_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ap_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x8e}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x1}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x2}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x8040}, 0x40d0)
r8 = dup(r0)
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f00000017c0)={&(0x7f0000001540)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001780)={&(0x7f0000001580)={0x1d0, r7, 0x400, 0x70bd2a, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x134b}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x10, 0xcd, [0xa50e, 0x8001, 0xfffa, 0xff81, 0x8e41, 0x1]}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1f0}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x143c}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x10}], @NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x6]}, @NL80211_ATTR_FRAME={0x120, 0x33, @probe_request={@with_ht={{{0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x5a}, @device_b, @device_b, @initial, {0x1, 0x3}}, @ver_80211n={0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1}}, @void, @val={0x1, 0x8, [{0x6}, {0x24, 0x1}, {0x1, 0x1}, {0x24, 0x1}, {0x24, 0x1}, {0x3, 0x1}, {0x16}, {0x30, 0x1}]}, @void, @val={0x2d, 0x1a, {0x80, 0x2, 0x5, 0x0, {0x10000, 0x20, 0x0, 0x40, 0x0, 0x0, 0x0, 0x2}, 0x300, 0x70, 0xde}}, @void, [{0xdd, 0xd8, "473540bd1f2df568c7e70d70c3b1e9dcde37e0ac76ee0c634d5ae32bcce4e89739b05f1b51b665157dccb1516e5da604e2d36692baf7040f153f9d085a57a38f275cc4779b4355d994ae16b3e09af3f9f53f0c243468b9a70cbfe6d63e5fa10dd4dd8e932393eb39d1dfc217d964d496183adaf45eca4459ab41e2811208a22f12ce354efede0ac6183e8b421eca10864e2d44ecd34f4892ac3bfa00b384b737191c20cd31e2dfce32df81389cc3d398369e019db78b71d1b52339d42be1daec7ea09c846a459911be4b8ce2bf83dc504bb978e32ab23b9b"}]}}, @NL80211_ATTR_FRAME={0x54, 0x33, @probe_response={@with_ht={{{0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1}, {0x20}, @device_a, @device_a, @random="38eb768458f3", {0xb, 0x1}}, @ver_80211n={0x0, 0x80, 0x2, 0x3, 0x0, 0x0, 0x1}}, 0x2, @default, 0x1080, @void, @void, @void, @val={0x4, 0x6, {0x40, 0x3, 0x1f, 0x2b93}}, @val={0x6, 0x2, 0x7}, @val={0x2d, 0x1a, {0x1000, 0x1, 0x3, 0x0, {0x80000001, 0x81, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x80, 0x81}}, @void, @void}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xc, 0xcd, [0x7, 0x0, 0x8, 0x7]}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x1d0}, 0x1, 0x0, 0x0, 0x80}, 0x11)

20:39:53 executing program 2:
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000000c0)={@mcast1, <r0=>0x0}, &(0x7f0000000100)=0x14)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000140)={@private=0xa010102, @initdev={0xac, 0x1e, 0x0, 0x0}, r0}, 0xc)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000380)={'syztnl0\x00', &(0x7f00000002c0)={'syztnl0\x00', <r2=>r0, 0x7800, 0x40, 0x9657660, 0x1c20, {{0x27, 0x4, 0x2, 0x8, 0x9c, 0x68, 0x0, 0x4, 0x29, 0x0, @rand_addr=0x64010102, @rand_addr=0x64010100, {[@timestamp={0x44, 0x20, 0x41, 0x0, 0x2, [0x5, 0x642, 0x4, 0xf7da, 0xffff, 0xe583, 0xc7]}, @lsrr={0x83, 0x13, 0x3a, [@private=0xa010101, @rand_addr=0x64010102, @loopback, @rand_addr=0x64010100]}, @end, @rr={0x7, 0x13, 0x3e, [@empty, @local, @broadcast, @local]}, @timestamp_addr={0x44, 0x2c, 0x11, 0x1, 0x4, [{@dev={0xac, 0x14, 0x14, 0x23}, 0x401}, {@remote, 0x3f}, {@loopback, 0x7fffffff}, {@multicast2, 0x5}, {@local, 0x1f}]}, @end, @timestamp_prespec={0x44, 0x14, 0x50, 0x3, 0xe, [{@private=0xa010100, 0x6}, {@multicast2, 0x1c000}]}]}}}}})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000540)={&(0x7f00000003c0)={0x160, r1, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}]}, @HEADER={0x80, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x160}, 0x1, 0x0, 0x0, 0x72abe7436bf5435e}, 0x4000040)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000640)={'syztnl2\x00', &(0x7f00000005c0)={'gre0\x00', r0, 0x20, 0x20, 0x10000, 0x200, {{0xd, 0x4, 0x3, 0xe, 0x34, 0x66, 0x0, 0x8, 0x4, 0x0, @multicast1, @dev={0xac, 0x14, 0x14, 0x1d}, {[@noop, @lsrr={0x83, 0x1f, 0xd5, [@empty, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010102, @multicast1, @multicast2, @dev={0xac, 0x14, 0x14, 0x42}]}]}}}}})
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000940)=[{{&(0x7f0000000680), 0x6e, &(0x7f00000008c0)=[{&(0x7f0000000700)=""/250, 0xfa}, {&(0x7f0000000800)=""/151, 0x97}], 0x2, &(0x7f0000000900)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}], 0x1, 0x40000020, &(0x7f0000000980)={0x0, 0x989680})
sendmsg$inet6(r3, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f00000009c0)="6b8a1b8427620e6700da70adc9e58f8ff4e587a5ff89ff8b11edda3ae2d7f32151a6f4524369e975d2c8d08421e0a10d1ba137d5382c7117b13ebe2f1c91d383bf551f3dd590aadd673e0b3ed9f78ba1", 0x50}, {&(0x7f0000000a40)}, {&(0x7f0000000a80)="83ce0836c425e72faebc2c014a7d7d184c4ffdb94732994f91a608b228253f62e231cc255595b30c5a3f5529b02286c245df223f772e00d3cd7524e574c16ae0005e140ce963ec1ba3375a66", 0x4c}, {&(0x7f0000000b00)="0c74654ecb443e0ab20426b2cdee9a9ff8c6dcf93029d543c60eebefbef023928b1a3d2de8c21ee0775abfdd39bb5e606c7d5d6b58df9a99a90fe4576251b524e1a118c3a52c5e01ff970c889ba1407e579296d4ff778974ed5c4beff5bec064ac33035858aa50ac4b2c853ab41a6219a71474986ebe37cccd3078646e81a96fa76683fa5200a537b055e633897b0d9b5cfb77e991dda5a89f6ab629f46f56034632d81123a70a4e4966d2c10a1b670aae74508e0615e1e9149e786d7d04a46d3e95", 0xc2}, {&(0x7f0000000c00)="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", 0x1000}, {&(0x7f0000001c00)="77f29e8e8ba66a77ff6cfa450c46bfde127b69bd083f75d007121090bb41cf3f3e7c942230d6c93c80354141a8d661440e6f3ccf18a6cc735ec40b5427baea11e5ac3b7db2e4813edba6b5cdffdff258725b01b933030d3cdafd2d9425b89647cc7ac1ab3480e3322c016e6541f131c93f1a2b09b319a735bc9083d47ff1e7057f52113d3871c8c25c6cfbd941700c26ce87daee67", 0x95}, {&(0x7f0000001cc0)="265dbe7f1c73e5df1c5e4d500c786769c6687772633700ae7ab18f592e14336439f3603a686c45b834d5f4bfcaca6f11e4ac56bf9f51ee62d53a3b699e417b34753390197348ffccf5ce6484bc9e619eb71e3204ecb3c83e958308f35ff0f076fae64000ca173f6c64d166469b0129641404c2b2f09be116aa8f9e0ffe562558ea75e7341f631125793e9b4e6e86e9d698bd3e1015a4fdffb84b229bd07e0575aa1a10d5c5cf4d7907565ab66c215d1cac54f69b3ef1fbb4dc84c8cf457bb835d9e2ea051c95c935f46793b5ecbc394ef923234762ec6245ae", 0xd9}], 0x7, &(0x7f0000001e40)=[@rthdrdstopts={{0x30, 0x29, 0x37, {0x1e, 0x2, '\x00', [@ra={0x5, 0x2, 0x8001}, @enc_lim={0x4, 0x1, 0x5}, @pad1, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @dstopts_2292={{0x50, 0x29, 0x4, {0x87, 0x6, '\x00', [@jumbo={0xc2, 0x4, 0xffffffff}, @pad1, @calipso={0x7, 0x20, {0x1, 0x6, 0x6, 0x886, [0x8, 0x3b13, 0x6]}}, @enc_lim={0x4, 0x1, 0x5}, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x7fff}}, @rthdrdstopts={{0x1e0, 0x29, 0x37, {0x32, 0x38, '\x00', [@jumbo={0xc2, 0x4, 0x10000}, @jumbo={0xc2, 0x4, 0x101}, @generic={0x1, 0x6d, "2de99f56a8164cc14e6287b36689d190b194b103cd2155bf7f8b1415fdf4b5867829419072b4b8af9009c4a4321d191ae3618c2b8e752664993231756760dc1f069258001ea4ec124436d3b1421c8c242cf7e351b5e43da3501550c9e8f972e5c98773a67b135376aff3b7a1d4"}, @generic={0x5, 0xb0, "5d249bf5618d40600ab4df88312ca1c2431b30872c6bac2c9fd9ed96728b600ad80f698d8c26e69885146841366764411f396d27ecf3c94f95a407ce461238bb421ba9d6c7ea3686c943da139e46683bd18c72777973ba60daf000140e20ea38ab0276aa954e7d949f019afdf19f1cde9e2672810560dbb8b55bc86e57afd8d98c6a4a1b9b6b6caf9315fde82ff87e22a0c24ee1e20346612a71b4f46edc6450e5024560f5b29c7b13a0f23ed669c986"}, @generic={0x5, 0x6f, "c06bbd930674dbff7cccdb52f92bc47ef7354c906119b0565b8f1332c5c538e950a86b4d90e84527dc091103dd03bb30baf142e7a463985bb4b8fb7f3fcdb429548b9aea0ec7e03202448a11aa9c08de2d890847595e01ed1a4cab9322de3825fd9e1aca848531e4ece4deebaf8ca2"}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @hao={0xc9, 0x10, @empty}]}}}], 0x278}, 0x20004015)
setsockopt$inet6_IPV6_RTHDR(r3, 0x29, 0x39, &(0x7f0000002100)={0x4, 0x4, 0x0, 0xfa, 0x0, [@dev={0xfe, 0x80, '\x00', 0x28}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}, 0x28)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000002140), 0x12041, 0x0)
fcntl$getown(r4, 0x9)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000021c0), r3)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f00000022c0)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000002280)={&(0x7f0000002200)={0x44, r5, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x4}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x5}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xff}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x1}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x2}]}, 0x44}, 0x1, 0x0, 0x0, 0x40040}, 0x11)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r3, 0x89f7, &(0x7f0000002380)={'ip6tnl0\x00', &(0x7f0000002300)={'syztnl2\x00', <r6=>r0, 0x29, 0x1f, 0x5, 0x1, 0x1, @empty, @local, 0x7, 0x8000, 0x1, 0x75}})
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000002440)={'syztnl0\x00', &(0x7f00000023c0)={'sit0\x00', r6, 0x29, 0x0, 0x3, 0x8, 0x1d, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, '\x00', 0xb}, 0x7, 0x10, 0x9, 0x80000000}})
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000002480)={{0x1, 0x1, 0x18, <r8=>r4, {0x5}}, './file0\x00'})
getsockopt$inet6_mreq(r7, 0x29, 0x1b, &(0x7f00000024c0)={@private1, <r9=>0x0}, &(0x7f0000002500)=0x14)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r8, 0x89f0, &(0x7f00000025c0)={'ip6gre0\x00', &(0x7f0000002540)={'ip6_vti0\x00', r9, 0xed2413e8e0fc0944, 0x7, 0x7f, 0x83, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, @local, 0x20, 0x700, 0x1, 0x6}})
futex(&(0x7f0000002600), 0x80, 0x0, &(0x7f0000002640)={0x77359400}, &(0x7f0000002680), 0x2)

[   72.729006] audit: type=1400 audit(1664656793.731:6): avc:  denied  { execmem } for  pid=286 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
20:39:53 executing program 3:
sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x40081)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000140)={0x96c, 0x0, 0x200, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x1000, 0x31}}}}, [@NL80211_ATTR_FRAME={0xe, 0x33, @ctrl_frame=@ack={{}, {0x3}, @device_b}}, @NL80211_ATTR_FRAME={0x98, 0x33, @ctrl_frame=@ba={{}, {0x9}, @broadcast, @device_b, @basic={{0x0, 0x0, 0x0, 0x0, 0xd}, {0x9, 0x5}, "65e976739c99a9aef517eb043a7df5347fbb65e91b48bdf00d04b67c7936c3158bf2b23523fa2860e9f87ef54ec654ef4a10e0a86d8ea5afc91a9e6be10c0df2867fd81827671e5d0755c2e63ef382b902b5bc019d295685b40730a6682638f4b3eee4e9cd38bf15b7bb7a282fba9116a352d8493a67619a896e07841774f122"}}}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_FRAME={0x1e, 0x33, @mgmt_frame=@disassoc={@wo_ht={{0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @device_a, @device_a, @random="5566b042ff93", {0xe, 0x8}}, 0x36, @void}}, @NL80211_ATTR_FRAME={0x86e, 0x33, @data_frame={@no_qos=@type01={{0x0, 0x2, 0x7, 0x0, 0x1, 0x0, 0x1, 0x1}, {0x5}, @device_b, @from_mac, @device_a, {0xf, 0x23d}}, @random="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"}}]}, 0x96c}, 0x1, 0x0, 0x0, 0x40010}, 0x11)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000b80), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000c40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x14, r1, 0x200, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x4000)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000cc0)={'wpan4\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_KEY(r0, &(0x7f0000000dc0)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d00)={0x5c, 0x0, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20040001}, 0x4040044)
sendmsg$DEVLINK_CMD_RATE_SET(0xffffffffffffffff, &(0x7f0000000ec0)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x34, 0x0, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x840}, 0x800)
sendmsg$NL802154_CMD_GET_SEC_KEY(r0, &(0x7f0000000fc0)={&(0x7f0000000f00), 0xc, &(0x7f0000000f80)={&(0x7f0000000f40)={0x14, 0x0, 0x4, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x41}, 0x20044000)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001040), r0)
sendmsg$IEEE802154_LLSEC_ADD_KEY(r3, &(0x7f0000001100)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000010c0)={&(0x7f0000001080)={0x24, r4, 0x10, 0x70bd2a, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_KEY_USAGE_FRAME_TYPES={0x5, 0x31, 0x6e}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0xb16e738d4c75a95b)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000001180)={'wpan0\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000011c0)={'wpan0\x00', <r7=>0x0})
sendmsg$IEEE802154_LLSEC_GETPARAMS(r5, &(0x7f00000012c0)={&(0x7f0000001140), 0xc, &(0x7f0000001280)={&(0x7f0000001200)={0x5c, r4, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r7}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000001340), r5)
sendmsg$NLBL_MGMT_C_ADD(r8, &(0x7f0000001400)={&(0x7f0000001300)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000013c0)={&(0x7f0000001380)={0x30, r9, 0x10, 0x70bd2d, 0x25dfdbfc, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x8040}, 0x20004005)
sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f0000001580)={&(0x7f0000001440)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001540)={&(0x7f00000014c0)={0x80, 0x0, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x5c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'geneve0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x9}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}]}, 0x80}, 0x1, 0x0, 0x0, 0x40}, 0x1)

20:39:53 executing program 4:
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x1000)=nil)
sigaltstack(&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000))
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000004)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000040)={0x0, <r0=>0x0})
move_pages(r0, 0x2, &(0x7f0000000080)=[&(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil], &(0x7f00000000c0)=[0x9, 0x80, 0x6161], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x6, 0x10010, 0xffffffffffffffff, 0xc562c000)
ioctl$BLKRAGET(0xffffffffffffffff, 0x1263, &(0x7f0000000140))
mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000180)={0x0, 0xffffffffffffffff})
r1 = syz_open_procfs(r0, &(0x7f00000001c0)='net/ip6_mr_vif\x00')
msync(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000200), 0x101001, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000, 0x1010, r2, 0x8000000)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r5 = openat$cgroup_type(r1, &(0x7f0000000240), 0x2, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000280)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd, 0x0, 0x0, 0xffffff00, 0x1, 0x1, {0x0, r4, r5}}, 0x4)
fcntl$dupfd(r5, 0x406, r2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r6=>r1, {0x0, 0xee00}}, './file0\x00'})
sendfile(r6, r1, &(0x7f0000000300)=0x1, 0xffffffffffffffff)
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xc)

20:39:53 executing program 5:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x82]}, 0x8, 0x80800)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000040)=0x80, 0x4)
r2 = getuid()
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000006c0)={{0x1, 0x1, 0x18, <r4=>r1}, './file0\x00'})
r5 = syz_open_dev$rtc(&(0x7f0000000700), 0xfa1, 0x70100)
r6 = getuid()
r7 = timerfd_create(0x3, 0x800)
r8 = accept4$bt_l2cap(r0, &(0x7f0000000740), &(0x7f0000000780)=0xe, 0x80800)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f00000007c0)={{0x1, 0x1, 0x18, <r9=>r0, {0x3}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000800)={{0x1, 0x1, 0x18, <r10=>r0, {0xfff}}, './file0\x00'})
sendmmsg$unix(r0, &(0x7f0000000980)=[{{&(0x7f0000000080)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000200)=[{&(0x7f0000000100)="f33f0988febe07405d8d7b4691b20b2f584cf1146525ff4591d85d5438ca49317b81b54ea041e66da55be5ccb7ff59e79e7f7dd23b64d388065a159215ece1a27777572c0d02575eb48b436f7e1d6d42b34460e06f1af9e6e58d6308781b85be668fe5b6ecf91792829438e7237b28419f6be0e33011a1e5116f689bd22677ea52e34213ffbb8eba34351e8d203f4e1d9e04289beefef3cec74675488fcb5e8612df7de2d86deac1747b8951fd90af6a86c16af6d37724f0c693f4f1c49f6487d38cc970d10bd5cd9f30542b73fa66e445a2b5ac6b4a903ce9ec2c7b71333d0ee7d9cd42b7", 0xe5}], 0x1, 0x0, 0x0, 0x200480d0}}, {{&(0x7f0000000240)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000640)=[{&(0x7f00000002c0)="71500e407d141f379d365edc1e8c2736552cdddcf46a001ee87d17d30aca08fbef6b30f1034162fa546539363f0cd394faf7e2b3e624708a6853e0781afbeda5618fc4edf4a15e7299a2009f9fbffe949be4e8fb434fe338811102b4b95b600c1421044d7a58d1a777e2693503a3b9ad91e2228000101bed410cbe9904eb060b84efb5e1dec62593063cf95e9810d74ff6d275288dc9db678a", 0x99}, {&(0x7f0000000380)="d57f766cc44b7fa2d8adf27348653da663e46c63655d35cd5b6d6a4a5c72e74fb536561ba9e1ce38c67e413c3bdba19da783d3b1c08fefb73f306de8e7fa78ca3dbc6bdde0d26ef7cebc5629412ff53d0bd2b5d021dd830d65522ed264f772080364aa0a7c73c223fcc4cd035fe083f624fe413adf63402749cdafd108299da9fdc827f0e28cacd4bff42de9604abc37304bd1cdf02afd0182abff0979", 0x9d}, {&(0x7f0000000440)="cd8fd25cb1f8a13080e8aea1eebf64170300ef2dafe98d83f434ffeceddf33b3aace184a86af490dfa88e1bb95d54acdfeead6e1c163c24533e7fd2c8d4399698feb42382b641d865489167503d421ab7ba7627e62b0fdb7393d7bb0", 0x5c}, {&(0x7f00000004c0)="17cbdac41bafd642902273ae69ca9354102394e506527a3778b96b2f86ab3088b9cea483d743498e466e407ed9b2f8440ec69f89395ebce189c781b3765ac9fce0ebc522d7da5b7eeeab0ef7b45d2f894329c3ce4b5ac2aadce29031d2b3932c85ed7559763b17b0fa325518c2c755bc126d8a3737d4ec44cdf9c964fe588a537e5c0843e4f08bcf8bb785b79cfe849bd1e60cb001be25437d9d315255162eedc7c7e21fce033d951bf3bac1e37ab6400b4583891ce6b53e9a0e", 0xba}, {&(0x7f0000000580)}, {&(0x7f00000005c0)="fc31b39a617dbd290b97136c9d224cbc5240d2056d77638c3e78faa7c939ada9559707e6c64df255c68795e25292c67ad87563803d2f0e1704abc4137fc9e44c3ca7684dc40d279df15998af1453d71459", 0x51}], 0x6, &(0x7f0000000840)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r2}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, r0, r3, r1, r4, r5, r1, r0]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r6, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01, 0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @rights={{0x18, 0x1, 0x1, [r1, r1]}}, @rights={{0x38, 0x1, 0x1, [r7, r8, r1, r1, r9, r1, r1, r10, r0, r1]}}], 0x118}}], 0x2, 0x20000004)
r11 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000a00), 0x0, 0x0)
syncfs(r11)
ioctl$AUTOFS_IOC_SETTIMEOUT(r4, 0x80049367, &(0x7f0000000a40)=0xfffffffffffffc01)
fcntl$notify(r3, 0x402, 0x30)
fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f0000000a80)=0x3)
accept4(r8, 0x0, &(0x7f0000000ac0), 0x80000)

20:39:53 executing program 7:
sendmsg$NL80211_CMD_START_NAN(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0x4, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0x51}}}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x80}]}, 0x30}, 0x1, 0x0, 0x0, 0x440c0}, 0x40000000)
sendmsg$NL80211_CMD_FLUSH_PMKSA(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x28, 0x0, 0x800, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x9, 0x31}}}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40000d0}, 0x4840)
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$SMC_PNETID_FLUSH(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x54, r0, 0x4, 0x70bd2a, 0x25dfdbfe, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'syz_tun\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x20004005}, 0x4040000)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000680), 0x4800, 0x0)
sendmsg$NL80211_CMD_TDLS_OPER(r1, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x54, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x6, 0x77}}}}, [@NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0x4}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x54}, 0x1, 0x0, 0x0, 0x90}, 0x800)
preadv2(r1, &(0x7f00000028c0)=[{&(0x7f0000000800)=""/167, 0xa7}, {&(0x7f00000008c0)=""/4096, 0x1000}, {&(0x7f00000018c0)=""/4096, 0x1000}], 0x3, 0x80000000, 0x5, 0x3)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002900)='/proc/sysvipc/sem\x00', 0x0, 0x0)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000002980), r1)
sendmsg$DEVLINK_CMD_GET(r2, &(0x7f0000002a40)={&(0x7f0000002940)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002a00)={&(0x7f00000029c0)={0x34, r3, 0x4, 0x70bd2b, 0x25dfdbff, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000801}, 0x24000000)
r4 = open_tree(r2, &(0x7f0000002a80)='./file0\x00', 0x88002)
ioctl$PTP_SYS_OFFSET_PRECISE(r4, 0xc0403d08, &(0x7f0000002ac0))
sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f0000002c00)={&(0x7f0000002b00)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000002bc0)={&(0x7f0000002b40)={0x64, 0x0, 0x400, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4c, 0x64}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000000}, 0x400c804)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c)
pipe(&(0x7f0000002c40)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$CDROM_GET_CAPABILITY(r5, 0x5331)
r6 = pidfd_open(0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB(r6, 0xc400941b, &(0x7f0000002c80)={0x0, 0x7c7})
r7 = syz_open_dev$mouse(&(0x7f0000003080), 0x0, 0x100c0)
epoll_ctl$EPOLL_CTL_MOD(r7, 0x3, r2, &(0x7f00000030c0)={0x20000000})

20:39:53 executing program 6:
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)
arch_prctl$ARCH_GET_CPUID(0x1011)

[   74.067188] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   74.071272] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   74.074993] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   74.079226] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   74.082976] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   74.086110] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   74.096252] Bluetooth: hci0: HCI_REQ-0x0c1a
[   74.145289] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   74.147540] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   74.150064] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   74.153175] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   74.155457] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   74.157106] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   74.165531] Bluetooth: hci2: HCI_REQ-0x0c1a
[   74.192364] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   74.196364] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   74.200990] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   74.208167] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   74.209761] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   74.211291] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   74.214236] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   74.216137] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   74.218347] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   74.219979] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   74.220475] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   74.223638] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   74.224659] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   74.225659] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   74.227516] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   74.229389] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   74.229416] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   74.232316] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   74.234460] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   74.236478] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   74.237814] Bluetooth: hci4: HCI_REQ-0x0c1a
[   74.237910] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   74.246043] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   74.250416] Bluetooth: hci5: HCI_REQ-0x0c1a
[   74.251863] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   74.254058] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   74.260408] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   74.261569] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   74.262919] Bluetooth: hci3: HCI_REQ-0x0c1a
[   74.269973] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   74.282815] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   74.285352] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   74.287188] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   74.291017] Bluetooth: hci7: HCI_REQ-0x0c1a
[   74.293526] Bluetooth: hci6: HCI_REQ-0x0c1a
[   76.153062] Bluetooth: hci1: Opcode 0x c03 failed: -110
[   76.153206] Bluetooth: hci0: command 0x0409 tx timeout
[   76.215834] Bluetooth: hci2: command 0x0409 tx timeout
[   76.280215] Bluetooth: hci3: command 0x0409 tx timeout
[   76.280252] Bluetooth: hci5: command 0x0409 tx timeout
[   76.281391] Bluetooth: hci4: command 0x0409 tx timeout
[   76.344794] Bluetooth: hci6: command 0x0409 tx timeout
[   76.344861] Bluetooth: hci7: command 0x0409 tx timeout
[   78.199753] Bluetooth: hci0: command 0x041b tx timeout
[   78.263796] Bluetooth: hci2: command 0x041b tx timeout
[   78.327767] Bluetooth: hci4: command 0x041b tx timeout
[   78.329334] Bluetooth: hci5: command 0x041b tx timeout
[   78.329759] Bluetooth: hci3: command 0x041b tx timeout
[   78.391743] Bluetooth: hci6: command 0x041b tx timeout
[   78.392957] Bluetooth: hci7: command 0x041b tx timeout
[   79.328533] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   79.329607] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   79.331139] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   79.333223] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   79.334358] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   79.335238] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   79.338447] Bluetooth: hci1: HCI_REQ-0x0c1a
[   80.248785] Bluetooth: hci0: command 0x040f tx timeout
[   80.311752] Bluetooth: hci2: command 0x040f tx timeout
[   80.376805] Bluetooth: hci3: command 0x040f tx timeout
[   80.377407] Bluetooth: hci5: command 0x040f tx timeout
[   80.377983] Bluetooth: hci4: command 0x040f tx timeout
[   80.440780] Bluetooth: hci7: command 0x040f tx timeout
[   80.441384] Bluetooth: hci6: command 0x040f tx timeout
[   81.399859] Bluetooth: hci1: command 0x0409 tx timeout
[   82.296799] Bluetooth: hci0: command 0x0419 tx timeout
[   82.360760] Bluetooth: hci2: command 0x0419 tx timeout
[   82.424788] Bluetooth: hci4: command 0x0419 tx timeout
[   82.425372] Bluetooth: hci5: command 0x0419 tx timeout
[   82.425948] Bluetooth: hci3: command 0x0419 tx timeout
[   82.488772] Bluetooth: hci6: command 0x0419 tx timeout
[   82.489354] Bluetooth: hci7: command 0x0419 tx timeout
[   83.448767] Bluetooth: hci1: command 0x041b tx timeout
[   85.496738] Bluetooth: hci1: command 0x040f tx timeout
[   87.543779] Bluetooth: hci1: command 0x0419 tx timeout
20:40:48 executing program 5:
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f00000001c0)={0x0, 0x18, '\x00', 0x1, &(0x7f0000000180)=[0x0, 0x0, 0x0]})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = socket$nl_audit(0x10, 0x3, 0x9)
dup2(r2, r0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x7ab681, 0x24)
close_range(r1, r3, 0x0)
write(0xffffffffffffffff, &(0x7f0000000180), 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000140)={0x0, 0x0})
syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x217}, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000fee000/0x12000)=nil, 0x0, 0x0)

[  127.822372] audit: type=1400 audit(1664656848.825:7): avc:  denied  { open } for  pid=3530 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  127.823845] audit: type=1400 audit(1664656848.825:8): avc:  denied  { kernel } for  pid=3530 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  127.844214] ------------[ cut here ]------------
[  127.844236] 
[  127.844240] ======================================================
[  127.844243] WARNING: possible circular locking dependency detected
[  127.844248] 6.0.0-rc7-next-20220930 #1 Not tainted
[  127.844254] ------------------------------------------------------
[  127.844257] syz-executor.5/3531 is trying to acquire lock:
[  127.844263] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  127.844304] 
[  127.844304] but task is already holding lock:
[  127.844306] ffff88800e0ee020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  127.844332] 
[  127.844332] which lock already depends on the new lock.
[  127.844332] 
[  127.844335] 
[  127.844335] the existing dependency chain (in reverse order) is:
[  127.844338] 
[  127.844338] -> #3 (&ctx->lock){....}-{2:2}:
[  127.844351]        _raw_spin_lock+0x2a/0x40
[  127.844362]        __perf_event_task_sched_out+0x53b/0x18d0
[  127.844373]        __schedule+0xedd/0x2470
[  127.844386]        schedule+0xda/0x1b0
[  127.844399]        exit_to_user_mode_prepare+0x114/0x1a0
[  127.844412]        syscall_exit_to_user_mode+0x19/0x40
[  127.844424]        do_syscall_64+0x48/0x90
[  127.844441]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  127.844453] 
[  127.844453] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  127.844467]        _raw_spin_lock_nested+0x30/0x40
[  127.844477]        raw_spin_rq_lock_nested+0x1e/0x30
[  127.844490]        task_fork_fair+0x63/0x4d0
[  127.844506]        sched_cgroup_fork+0x3d0/0x540
[  127.844519]        copy_process+0x4183/0x6e20
[  127.844530]        kernel_clone+0xe7/0x890
[  127.844539]        user_mode_thread+0xad/0xf0
[  127.844549]        rest_init+0x24/0x250
[  127.844560]        arch_call_rest_init+0xf/0x14
[  127.844577]        start_kernel+0x4c6/0x4eb
[  127.844592]        secondary_startup_64_no_verify+0xe0/0xeb
[  127.844606] 
[  127.844606] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  127.844619]        _raw_spin_lock_irqsave+0x39/0x60
[  127.844630]        try_to_wake_up+0xab/0x1930
[  127.844643]        up+0x75/0xb0
[  127.844657]        __up_console_sem+0x6e/0x80
[  127.844672]        console_unlock+0x46a/0x590
[  127.844691]        vprintk_emit+0x1bd/0x560
[  127.844706]        vprintk+0x84/0xa0
[  127.844722]        _printk+0xba/0xf1
[  127.844733]        regdb_fw_cb.cold+0x6c/0xa7
[  127.844749]        request_firmware_work_func+0x12e/0x240
[  127.844768]        process_one_work+0xa17/0x16a0
[  127.844786]        worker_thread+0x637/0x1260
[  127.844802]        kthread+0x2ed/0x3a0
[  127.844815]        ret_from_fork+0x22/0x30
[  127.844827] 
[  127.844827] -> #0 ((console_sem).lock){....}-{2:2}:
[  127.844841]        __lock_acquire+0x2a02/0x5e70
[  127.844857]        lock_acquire+0x1a2/0x530
[  127.844873]        _raw_spin_lock_irqsave+0x39/0x60
[  127.844883]        down_trylock+0xe/0x70
[  127.844898]        __down_trylock_console_sem+0x3b/0xd0
[  127.844914]        vprintk_emit+0x16b/0x560
[  127.844930]        vprintk+0x84/0xa0
[  127.844945]        _printk+0xba/0xf1
[  127.844955]        report_bug.cold+0x72/0xab
[  127.844971]        handle_bug+0x3c/0x70
[  127.844987]        exc_invalid_op+0x14/0x50
[  127.845004]        asm_exc_invalid_op+0x16/0x20
[  127.845016]        group_sched_out.part.0+0x2c7/0x460
[  127.845033]        ctx_sched_out+0x8f1/0xc10
[  127.845049]        __perf_event_task_sched_out+0x6d0/0x18d0
[  127.845060]        __schedule+0xedd/0x2470
[  127.845073]        schedule+0xda/0x1b0
[  127.845086]        exit_to_user_mode_prepare+0x114/0x1a0
[  127.845097]        syscall_exit_to_user_mode+0x19/0x40
[  127.845109]        do_syscall_64+0x48/0x90
[  127.845125]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  127.845138] 
[  127.845138] other info that might help us debug this:
[  127.845138] 
[  127.845140] Chain exists of:
[  127.845140]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  127.845140] 
[  127.845155]  Possible unsafe locking scenario:
[  127.845155] 
[  127.845157]        CPU0                    CPU1
[  127.845159]        ----                    ----
[  127.845161]   lock(&ctx->lock);
[  127.845166]                                lock(&rq->__lock);
[  127.845172]                                lock(&ctx->lock);
[  127.845179]   lock((console_sem).lock);
[  127.845184] 
[  127.845184]  *** DEADLOCK ***
[  127.845184] 
[  127.845186] 2 locks held by syz-executor.5/3531:
[  127.845193]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  127.845221]  #1: ffff88800e0ee020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  127.845247] 
[  127.845247] stack backtrace:
[  127.845250] CPU: 0 PID: 3531 Comm: syz-executor.5 Not tainted 6.0.0-rc7-next-20220930 #1
[  127.845263] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  127.845271] Call Trace:
[  127.845275]  <TASK>
[  127.845279]  dump_stack_lvl+0x8b/0xb3
[  127.845298]  check_noncircular+0x263/0x2e0
[  127.845314]  ? format_decode+0x26c/0xb50
[  127.845330]  ? print_circular_bug+0x450/0x450
[  127.845347]  ? simple_strtoul+0x30/0x30
[  127.845362]  ? format_decode+0x26c/0xb50
[  127.845379]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  127.845397]  __lock_acquire+0x2a02/0x5e70
[  127.845418]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  127.845440]  lock_acquire+0x1a2/0x530
[  127.845456]  ? down_trylock+0xe/0x70
[  127.845473]  ? lock_release+0x750/0x750
[  127.845493]  ? vprintk+0x84/0xa0
[  127.845511]  _raw_spin_lock_irqsave+0x39/0x60
[  127.845522]  ? down_trylock+0xe/0x70
[  127.845538]  down_trylock+0xe/0x70
[  127.845554]  ? vprintk+0x84/0xa0
[  127.845570]  __down_trylock_console_sem+0x3b/0xd0
[  127.845587]  vprintk_emit+0x16b/0x560
[  127.845606]  vprintk+0x84/0xa0
[  127.845623]  _printk+0xba/0xf1
[  127.845634]  ? record_print_text.cold+0x16/0x16
[  127.845650]  ? report_bug.cold+0x66/0xab
[  127.845668]  ? group_sched_out.part.0+0x2c7/0x460
[  127.845686]  report_bug.cold+0x72/0xab
[  127.845704]  handle_bug+0x3c/0x70
[  127.845722]  exc_invalid_op+0x14/0x50
[  127.845740]  asm_exc_invalid_op+0x16/0x20
[  127.845752] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  127.845772] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  127.845784] RSP: 0018:ffff88801db8fc48 EFLAGS: 00010006
[  127.845793] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  127.845800] RDX: ffff888020141ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  127.845808] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  127.845815] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800e0ee000
[  127.845822] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  127.845833]  ? group_sched_out.part.0+0x2c7/0x460
[  127.845853]  ? group_sched_out.part.0+0x2c7/0x460
[  127.845872]  ctx_sched_out+0x8f1/0xc10
[  127.845892]  __perf_event_task_sched_out+0x6d0/0x18d0
[  127.845906]  ? lock_is_held_type+0xd7/0x130
[  127.845919]  ? __perf_cgroup_move+0x160/0x160
[  127.845930]  ? set_next_entity+0x304/0x550
[  127.845947]  ? update_curr+0x267/0x740
[  127.845965]  ? lock_is_held_type+0xd7/0x130
[  127.845979]  __schedule+0xedd/0x2470
[  127.845996]  ? io_schedule_timeout+0x150/0x150
[  127.846013]  ? rcu_read_lock_sched_held+0x3e/0x80
[  127.846032]  schedule+0xda/0x1b0
[  127.846047]  exit_to_user_mode_prepare+0x114/0x1a0
[  127.846059]  syscall_exit_to_user_mode+0x19/0x40
[  127.846073]  do_syscall_64+0x48/0x90
[  127.846090]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  127.846103] RIP: 0033:0x7f7d40740b19
[  127.846112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  127.846122] RSP: 002b:00007f7d3dcb6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  127.846133] RAX: 0000000000000001 RBX: 00007f7d40853f68 RCX: 00007f7d40740b19
[  127.846140] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7d40853f6c
[  127.846147] RBP: 00007f7d40853f60 R08: 000000000000000e R09: 0000000000000000
[  127.846154] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f7d40853f6c
[  127.846162] R13: 00007ffe7ed82b6f R14: 00007f7d3dcb6300 R15: 0000000000022000
[  127.846174]  </TASK>
[  127.903625] WARNING: CPU: 0 PID: 3531 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  127.904330] Modules linked in:
[  127.904576] CPU: 0 PID: 3531 Comm: syz-executor.5 Not tainted 6.0.0-rc7-next-20220930 #1
[  127.905179] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  127.906026] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  127.906440] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  127.907804] RSP: 0018:ffff88801db8fc48 EFLAGS: 00010006
[  127.908212] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  127.908745] RDX: ffff888020141ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  127.909282] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  127.909814] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800e0ee000
[  127.910353] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  127.910891] FS:  00007f7d3dcb6700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  127.911486] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  127.911927] CR2: 00007f3898cab368 CR3: 000000003e640000 CR4: 0000000000350ef0
[  127.912463] Call Trace:
[  127.912658]  <TASK>
[  127.912826]  ctx_sched_out+0x8f1/0xc10
[  127.913127]  __perf_event_task_sched_out+0x6d0/0x18d0
[  127.913508]  ? lock_is_held_type+0xd7/0x130
[  127.913831]  ? __perf_cgroup_move+0x160/0x160
[  127.914164]  ? set_next_entity+0x304/0x550
[  127.914480]  ? update_curr+0x267/0x740
[  127.914779]  ? lock_is_held_type+0xd7/0x130
[  127.915097]  __schedule+0xedd/0x2470
[  127.915382]  ? io_schedule_timeout+0x150/0x150
[  127.915723]  ? rcu_read_lock_sched_held+0x3e/0x80
[  127.916086]  schedule+0xda/0x1b0
[  127.916354]  exit_to_user_mode_prepare+0x114/0x1a0
[  127.916717]  syscall_exit_to_user_mode+0x19/0x40
[  127.917077]  do_syscall_64+0x48/0x90
[  127.917371]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  127.917762] RIP: 0033:0x7f7d40740b19
[  127.918049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  127.919414] RSP: 002b:00007f7d3dcb6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  127.919994] RAX: 0000000000000001 RBX: 00007f7d40853f68 RCX: 00007f7d40740b19
[  127.920528] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7d40853f6c
[  127.921056] RBP: 00007f7d40853f60 R08: 000000000000000e R09: 0000000000000000
[  127.921583] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f7d40853f6c
[  127.922121] R13: 00007ffe7ed82b6f R14: 00007f7d3dcb6300 R15: 0000000000022000
[  127.922664]  </TASK>
[  127.922848] irq event stamp: 722
[  127.923099] hardirqs last  enabled at (721): [<ffffffff8133e829>] exit_to_user_mode_prepare+0x109/0x1a0
[  127.923821] hardirqs last disabled at (722): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  127.924460] softirqs last  enabled at (494): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  127.925107] softirqs last disabled at (459): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  127.925755] ---[ end trace 0000000000000000 ]---
20:40:49 executing program 5:
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f00000001c0)={0x0, 0x18, '\x00', 0x1, &(0x7f0000000180)=[0x0, 0x0, 0x0]})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = socket$nl_audit(0x10, 0x3, 0x9)
dup2(r2, r0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x7ab681, 0x24)
close_range(r1, r3, 0x0)
write(0xffffffffffffffff, &(0x7f0000000180), 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000140)={0x0, 0x0})
syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x217}, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000fee000/0x12000)=nil, 0x0, 0x0)

20:40:49 executing program 5:
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f00000001c0)={0x0, 0x18, '\x00', 0x1, &(0x7f0000000180)=[0x0, 0x0, 0x0]})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = socket$nl_audit(0x10, 0x3, 0x9)
dup2(r2, r0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x7ab681, 0x24)
close_range(r1, r3, 0x0)
write(0xffffffffffffffff, &(0x7f0000000180), 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000140)={0x0, 0x0})
syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x217}, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000fee000/0x12000)=nil, 0x0, 0x0)

20:40:49 executing program 5:
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f00000001c0)={0x0, 0x18, '\x00', 0x1, &(0x7f0000000180)=[0x0, 0x0, 0x0]})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = socket$nl_audit(0x10, 0x3, 0x9)
dup2(r2, r0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x7ab681, 0x24)
close_range(r1, r3, 0x0)
write(0xffffffffffffffff, &(0x7f0000000180), 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000140)={0x0, 0x0})
syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x217}, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000fee000/0x12000)=nil, 0x0, 0x0)

20:40:49 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x2c, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000000001000008000000d2420100120300000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e31363931393939333900"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000cf7e49a1d95947318303ae70299e26a0010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000040000004600000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0300000004000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000030000000400000016000f000300040000000000000000000f00c5d7", 0x20, 0x800}, {&(0x7f0000010500)="ff030000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011600)="ed41000000080000e0f4655fe0f4655fe0f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2100}, {&(0x7f0000011700)="2000000098cfbf5498cfbf5400000000e0f4655f00"/32, 0x20, 0x2180}, {&(0x7f0000011800)="8081000000180000e0f4655fe0f4655fe0f4655f00000000000001004000000010000800000000000af301000400000000000000000000000300000030000000", 0x40, 0x2200}, {&(0x7f0000011900)="20000000000000000000000000000000e0f4655f00"/32, 0x20, 0x2280}, {&(0x7f0000011a00)="8081000000180000e0f4655fe0f4655fe0f4655f00000000000001004000000010000800000000000af301000400000000000000000000000300000040000000", 0x40, 0x2300}, {&(0x7f0000011b00)="20000000000000000000000000000000e0f4655f00"/32, 0x20, 0x2380}, {&(0x7f0000011c00)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2a00}, {&(0x7f0000011d00)="20000000000000000000000000000000e0f4655f00"/32, 0x20, 0x2a80}, {&(0x7f0000011e00)="ed41000000080000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000904c48a10000000000000000000000000000000000000000000000002000000098cfbf5498cfbf5498cfbf54e0f4655f98cfbf540000000000000000", 0xa0, 0x2b00}, {&(0x7f0000011f00)="ed8100001a040000e0f4655fe0f4655fe0f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000600000000000000000000000000000000000000000000000000000000000000000000000000000007e8b766c0000000000000000000000000000000000000000000000002000000098cfbf5498cfbf5498cfbf54e0f4655f98cfbf540000000000000000", 0xa0, 0x2c00}, {&(0x7f0000012000)="ffa1000026000000e0f4655fe0f4655fe0f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3136393139393933392f66696c65302f66696c6530000000000000000000000000000000000000000000003e5efe8c0000000000000000000000000000000000000000000000002000000098cfbf5498cfbf5498cfbf54e0f4655f98cfbf540000000000000000", 0xa0, 0x2d00}, {&(0x7f0000012100)="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", 0x1a0, 0x2e00}, {&(0x7f0000012300)="ed81000064000000e0f4655fe0f4655fe0f4655f00000000000001004000000000000800010000000af301000400000000000000000000000100000090000000000000000000000000000000000000000000000000000000000000000000000000000000e350ad400000000000000000000000000000000000000000000000002000000098cfbf5498cfbf5498cfbf54e0f4655f98cfbf540000000000000000", 0xa0, 0x3000}, {&(0x7f0000012400)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000012500)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000012800)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012900)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012a00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012b00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012c00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012d00)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x18000}, {&(0x7f0000012e00)="0200"/32, 0x20, 0x18400}, {&(0x7f0000012f00)="0300"/32, 0x20, 0x18800}, {&(0x7f0000013000)="0400"/32, 0x20, 0x18c00}, {&(0x7f0000013100)="0500"/32, 0x20, 0x19000}, {&(0x7f0000013200)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000800300"/96, 0x60, 0x19400}, {&(0x7f0000013300)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x20000}, {&(0x7f0000013400)="0200"/32, 0x20, 0x20400}, {&(0x7f0000013500)="0300"/32, 0x20, 0x20800}, {&(0x7f0000013600)="0400"/32, 0x20, 0x20c00}, {&(0x7f0000013700)="0500"/32, 0x20, 0x21000}, {&(0x7f0000013800)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000800300"/96, 0x60, 0x21400}, {&(0x7f0000013900)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d807050766696c653100"/64, 0x40, 0x28000}, {&(0x7f0000013a00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x30000}, {&(0x7f0000013f00)='syzkallers\x00'/32, 0x20, 0x38000}, {&(0x7f0000014000)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x48000}], 0x0, &(0x7f0000014100)=ANY=[@ANYBLOB="86"])
stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
mount$9p_unix(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x80, &(0x7f0000000640)={'trans=unix,', {[{@cache_fscache}, {@access_any}, {@uname={'uname', 0x3d, 'ext4\x00'}}, {@access_client}, {@cache_loose}], [{@seclabel}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}, {@subj_user}, {@uid_gt={'uid>', r0}}]}})

[  128.623424] loop5: detected capacity change from 0 to 2048
[  128.624537] ext4: Unknown parameter '�'
[  128.647216] 9pnet_fd: p9_fd_create_unix (3599): problem connecting socket: ./file0: -111
[  128.648715] loop5: detected capacity change from 0 to 2048
[  128.649286] ext4: Unknown parameter '�'
[  128.666063] 9pnet_fd: p9_fd_create_unix (3603): problem connecting socket: ./file0: -111
20:40:49 executing program 5:
r0 = accept$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000040)=0x1c)
connect(r0, &(0x7f0000000140)=@xdp={0x2c, 0x2, 0x0, 0x7}, 0x80)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x32261, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = accept$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @empty}, &(0x7f0000000200)=0x10)
setsockopt$inet6_opts(r0, 0x29, 0x39, &(0x7f0000000300)=@routing={0x89, 0x10, 0x1, 0x38, 0x0, [@mcast2, @empty, @private0={0xfc, 0x0, '\x00', 0x1}, @remote, @dev={0xfe, 0x80, '\x00', 0x6}, @private0, @mcast1, @dev={0xfe, 0x80, '\x00', 0x3f}]}, 0x88)
ioctl$sock_inet_SIOCGIFBRDADDR(r2, 0x8919, &(0x7f0000000240)={'geneve1\x00', {0x2, 0x0, @initdev}})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r4 = fcntl$dupfd(r1, 0x0, r3)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write(r3, &(0x7f0000000080)="01", 0x41030)

[  128.751203] audit: type=1400 audit(1664656849.754:9): avc:  denied  { read } for  pid=3611 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
20:40:49 executing program 5:
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000002900))
syz_io_uring_setup(0x572f, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0xfffffffd}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x3000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
removexattr(&(0x7f0000002f00)='./file0\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="757365722e6268dd15df5dc071c0ac2b956a0d5df2ce7593a2cfdad58022aa0060c4c4114d078f8802eb82d2f20dde7ba75bc400c3b638bae026183cba7dd9a1b96399d8d63cb0e4e4fd867492356a1e9b7e7c19cdf0341c000000c85e3d69e91af0fc3e041f0849f07587410518e0c30d0a63b334562cd52e3742cabf47a205c2662f7b5b483b202faf5d3cad2950dcc8d91a8006a2fa57296f00e45e5f80d40920584507d1"])

[  128.888499] No source specified
[  128.895030] No source specified
20:40:49 executing program 5:
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x12, 0xffffffffffffffff, 0x10000000)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_triestat\x00')
r2 = open(&(0x7f0000000180)='./file0\x00', 0x33002, 0x18)
openat(r2, &(0x7f00000001c0)='./file0\x00', 0x100, 0x1ea)
pread64(r1, &(0x7f0000000040)=""/170, 0xaa, 0x180000000000000)
syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x2, 0x0, @fd, 0x0, 0x0, 0x0, 0x4, 0x0, {0x0, 0x0, r1}}, 0x0)
ioctl$EVIOCGMASK(r1, 0x80104592, &(0x7f0000000100)={0x12, 0xc8, &(0x7f0000000000)="b924038994273a4d28c9d89fb4cf756d162c76f458b3fbbb492916cc985eecec800860385ee70c9589e314c81376e0b5148af7a71ae4185feb82fe196cde111dffd376f401db602a667d26503c0aae67f6e7bd36b507baf6612cb006edb9b4eac5606e97b2d97dba1850ffdd2076163552d50eeb1dfd596bb2a7d1d4afdfa72db756c421ad9ddf1dc3ae3f0fcdcd783295eb9a6b50238b8a94890c1146200f010cb23e1a1e98de074d5a5299dc3aa539a2eb4fc248da2d0483dfcda36f5a0be62496425d79993bac"})
r3 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil)
shmat(r3, &(0x7f0000ff0000/0x3000)=nil, 0x4000)
mlock2(&(0x7f0000ff5000/0x1000)=nil, 0x1000, 0x1)
r4 = shmget$private(0x0, 0x4000, 0x4, &(0x7f0000ffc000/0x4000)=nil)
shmget$private(0x0, 0x1000, 0x4, &(0x7f0000ffe000/0x1000)=nil)
ioctl$EVIOCSABS2F(r1, 0x401845ef, &(0x7f0000000140)={0x7ff, 0x2, 0x10001, 0x3, 0x10000, 0x80})
shmat(r4, &(0x7f0000ffb000/0x4000)=nil, 0x0)
r5 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ff8000/0x4000)=nil)
shmat(r5, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92)
shmctl$IPC_RMID(r5, 0x0)
mlock2(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0)
mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x0)
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92)

[  137.335829] Bluetooth: hci6: Opcode 0x c03 failed: -110

VM DIAGNOSIS:
20:40:49  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88801db8f690
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f7d3dcb6700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f3898cab368 CR3=000000003e640000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f7d408277c0 00007f7d408277c8
YMM02=0000000000000000 0000000000000000 00007f7d408277e0 00007f7d408277c0
YMM03=0000000000000000 0000000000000000 00007f7d408277c8 00007f7d408277c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000000 RBX=ffff8880202ef970 RCX=0000000000000001 RDX=1ffff1100405df2e
RSI=ffff8880202efa08 RDI=ffff8880202ef978 RBP=ffff8880202efa08 RSP=ffff8880202ef868
R8 =ffffffff85e3411e R9 =ffffffff85e34122 R10=ffffed100405df3b R11=ffff8880202ef9b0
R12=0000000000000008 R13=ffff8880202ef9d0 R14=ffff8880202ef970 R15=0000000000000003
RIP=ffffffff8111a03a RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f12b0a1c8c0 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f8962b6c368 CR3=0000000015ca8000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 2525252525252525 2525252525252525
YMM01=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM02=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM03=0000000000000000 0000000000000000 0000000400000006 0000564bec29e0b0
YMM04=0000000000000000 0000000000000000 0000564bec29aaa0 0000564bec29aa80
YMM05=0000000000000000 0000000000000000 01000000ff000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000600000002 0000564bec29a730
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 2064616572206f74 2064656c69614600
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000