Warning: Permanently added '[localhost]:30283' (ECDSA) to the list of known hosts. 2022/10/05 14:39:06 fuzzer started 2022/10/05 14:39:07 dialing manager at localhost:37193 syzkaller login: [ 40.606377] cgroup: Unknown subsys name 'net' [ 40.736708] cgroup: Unknown subsys name 'rlimit' 2022/10/05 14:39:21 syscalls: 2215 2022/10/05 14:39:21 code coverage: enabled 2022/10/05 14:39:21 comparison tracing: enabled 2022/10/05 14:39:21 extra coverage: enabled 2022/10/05 14:39:21 setuid sandbox: enabled 2022/10/05 14:39:21 namespace sandbox: enabled 2022/10/05 14:39:21 Android sandbox: enabled 2022/10/05 14:39:21 fault injection: enabled 2022/10/05 14:39:21 leak checking: enabled 2022/10/05 14:39:21 net packet injection: enabled 2022/10/05 14:39:21 net device setup: enabled 2022/10/05 14:39:21 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/05 14:39:21 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/05 14:39:21 USB emulation: enabled 2022/10/05 14:39:21 hci packet injection: enabled 2022/10/05 14:39:21 wifi device emulation: failed to parse kernel version (6.0.0-next-20221005) 2022/10/05 14:39:21 802.15.4 emulation: enabled 2022/10/05 14:39:21 fetching corpus: 50, signal 18531/20327 (executing program) 2022/10/05 14:39:21 fetching corpus: 100, signal 30553/33896 (executing program) 2022/10/05 14:39:21 fetching corpus: 150, signal 40762/45467 (executing program) 2022/10/05 14:39:21 fetching corpus: 200, signal 46925/52924 (executing program) 2022/10/05 14:39:21 fetching corpus: 250, signal 51092/58351 (executing program) 2022/10/05 14:39:21 fetching corpus: 300, signal 56396/64775 (executing program) 2022/10/05 14:39:21 fetching corpus: 350, signal 63631/72891 (executing program) 2022/10/05 14:39:22 fetching corpus: 400, signal 70835/80850 (executing program) 2022/10/05 14:39:22 fetching corpus: 450, signal 74861/85793 (executing program) 2022/10/05 14:39:22 fetching corpus: 500, signal 76748/88737 (executing program) 2022/10/05 14:39:22 fetching corpus: 550, signal 80068/92869 (executing program) 2022/10/05 14:39:22 fetching corpus: 600, signal 83051/96698 (executing program) 2022/10/05 14:39:22 fetching corpus: 650, signal 85751/100212 (executing program) 2022/10/05 14:39:22 fetching corpus: 700, signal 90395/105303 (executing program) 2022/10/05 14:39:22 fetching corpus: 750, signal 91872/107616 (executing program) 2022/10/05 14:39:22 fetching corpus: 800, signal 94523/110843 (executing program) 2022/10/05 14:39:23 fetching corpus: 850, signal 97124/113986 (executing program) 2022/10/05 14:39:23 fetching corpus: 900, signal 99176/116632 (executing program) 2022/10/05 14:39:23 fetching corpus: 950, signal 100522/118677 (executing program) 2022/10/05 14:39:23 fetching corpus: 1000, signal 103751/122260 (executing program) 2022/10/05 14:39:23 fetching corpus: 1050, signal 105349/124433 (executing program) 2022/10/05 14:39:23 fetching corpus: 1100, signal 108548/127821 (executing program) 2022/10/05 14:39:23 fetching corpus: 1150, signal 110305/130064 (executing program) 2022/10/05 14:39:23 fetching corpus: 1200, signal 111893/132104 (executing program) 2022/10/05 14:39:24 fetching corpus: 1250, signal 114204/134629 (executing program) 2022/10/05 14:39:24 fetching corpus: 1300, signal 115885/136714 (executing program) 2022/10/05 14:39:24 fetching corpus: 1350, signal 116792/138184 (executing program) 2022/10/05 14:39:24 fetching corpus: 1400, signal 117704/139636 (executing program) 2022/10/05 14:39:24 fetching corpus: 1450, signal 119169/141473 (executing program) 2022/10/05 14:39:24 fetching corpus: 1500, signal 120230/142945 (executing program) 2022/10/05 14:39:24 fetching corpus: 1550, signal 121410/144494 (executing program) 2022/10/05 14:39:24 fetching corpus: 1600, signal 122516/145888 (executing program) 2022/10/05 14:39:24 fetching corpus: 1650, signal 124077/147759 (executing program) 2022/10/05 14:39:24 fetching corpus: 1700, signal 126413/149981 (executing program) 2022/10/05 14:39:25 fetching corpus: 1750, signal 128048/151655 (executing program) 2022/10/05 14:39:25 fetching corpus: 1800, signal 129286/153163 (executing program) 2022/10/05 14:39:25 fetching corpus: 1850, signal 130141/154325 (executing program) 2022/10/05 14:39:25 fetching corpus: 1900, signal 131178/155575 (executing program) 2022/10/05 14:39:25 fetching corpus: 1950, signal 132179/156817 (executing program) 2022/10/05 14:39:25 fetching corpus: 2000, signal 133463/158226 (executing program) 2022/10/05 14:39:25 fetching corpus: 2050, signal 135261/159942 (executing program) 2022/10/05 14:39:25 fetching corpus: 2100, signal 135854/160841 (executing program) 2022/10/05 14:39:25 fetching corpus: 2150, signal 137146/162237 (executing program) 2022/10/05 14:39:25 fetching corpus: 2200, signal 138511/163544 (executing program) 2022/10/05 14:39:26 fetching corpus: 2250, signal 139809/164798 (executing program) 2022/10/05 14:39:26 fetching corpus: 2300, signal 140940/165927 (executing program) 2022/10/05 14:39:26 fetching corpus: 2350, signal 141874/166925 (executing program) 2022/10/05 14:39:26 fetching corpus: 2400, signal 142830/167947 (executing program) 2022/10/05 14:39:26 fetching corpus: 2450, signal 145860/170037 (executing program) 2022/10/05 14:39:26 fetching corpus: 2500, signal 146767/170975 (executing program) 2022/10/05 14:39:26 fetching corpus: 2550, signal 148094/172097 (executing program) 2022/10/05 14:39:26 fetching corpus: 2600, signal 148892/172953 (executing program) 2022/10/05 14:39:26 fetching corpus: 2650, signal 150190/174035 (executing program) 2022/10/05 14:39:27 fetching corpus: 2700, signal 151531/175016 (executing program) 2022/10/05 14:39:27 fetching corpus: 2750, signal 153166/176153 (executing program) 2022/10/05 14:39:27 fetching corpus: 2800, signal 154159/176959 (executing program) 2022/10/05 14:39:27 fetching corpus: 2850, signal 154872/177644 (executing program) 2022/10/05 14:39:27 fetching corpus: 2900, signal 156056/178462 (executing program) 2022/10/05 14:39:27 fetching corpus: 2950, signal 156973/179187 (executing program) 2022/10/05 14:39:27 fetching corpus: 3000, signal 157651/179785 (executing program) 2022/10/05 14:39:27 fetching corpus: 3050, signal 159086/180755 (executing program) 2022/10/05 14:39:27 fetching corpus: 3100, signal 159701/181356 (executing program) 2022/10/05 14:39:27 fetching corpus: 3150, signal 160290/181930 (executing program) 2022/10/05 14:39:28 fetching corpus: 3200, signal 161464/182679 (executing program) 2022/10/05 14:39:28 fetching corpus: 3250, signal 162014/183216 (executing program) 2022/10/05 14:39:28 fetching corpus: 3300, signal 162763/183768 (executing program) 2022/10/05 14:39:28 fetching corpus: 3350, signal 163328/184264 (executing program) 2022/10/05 14:39:28 fetching corpus: 3400, signal 164579/184900 (executing program) 2022/10/05 14:39:28 fetching corpus: 3450, signal 164942/185327 (executing program) 2022/10/05 14:39:28 fetching corpus: 3500, signal 165834/185875 (executing program) 2022/10/05 14:39:28 fetching corpus: 3550, signal 166448/186273 (executing program) 2022/10/05 14:39:28 fetching corpus: 3600, signal 168063/186957 (executing program) 2022/10/05 14:39:28 fetching corpus: 3650, signal 168951/187427 (executing program) 2022/10/05 14:39:29 fetching corpus: 3700, signal 169690/187845 (executing program) 2022/10/05 14:39:29 fetching corpus: 3750, signal 170217/188286 (executing program) 2022/10/05 14:39:29 fetching corpus: 3800, signal 170732/188604 (executing program) 2022/10/05 14:39:29 fetching corpus: 3850, signal 172301/189160 (executing program) 2022/10/05 14:39:29 fetching corpus: 3900, signal 173132/189553 (executing program) 2022/10/05 14:39:29 fetching corpus: 3950, signal 173570/189868 (executing program) 2022/10/05 14:39:29 fetching corpus: 4000, signal 174204/190180 (executing program) 2022/10/05 14:39:29 fetching corpus: 4050, signal 175076/190540 (executing program) 2022/10/05 14:39:29 fetching corpus: 4100, signal 175776/190852 (executing program) 2022/10/05 14:39:29 fetching corpus: 4150, signal 176568/191151 (executing program) 2022/10/05 14:39:29 fetching corpus: 4200, signal 176924/191372 (executing program) 2022/10/05 14:39:30 fetching corpus: 4250, signal 177470/191620 (executing program) 2022/10/05 14:39:30 fetching corpus: 4300, signal 177961/191848 (executing program) 2022/10/05 14:39:30 fetching corpus: 4350, signal 178605/192063 (executing program) 2022/10/05 14:39:30 fetching corpus: 4400, signal 179247/192274 (executing program) 2022/10/05 14:39:30 fetching corpus: 4450, signal 179913/192486 (executing program) 2022/10/05 14:39:30 fetching corpus: 4500, signal 180777/192693 (executing program) 2022/10/05 14:39:30 fetching corpus: 4550, signal 181941/192908 (executing program) 2022/10/05 14:39:30 fetching corpus: 4600, signal 182426/193047 (executing program) 2022/10/05 14:39:31 fetching corpus: 4650, signal 182736/193190 (executing program) 2022/10/05 14:39:31 fetching corpus: 4700, signal 183628/193320 (executing program) 2022/10/05 14:39:31 fetching corpus: 4750, signal 184025/193440 (executing program) 2022/10/05 14:39:31 fetching corpus: 4800, signal 185009/193533 (executing program) 2022/10/05 14:39:31 fetching corpus: 4817, signal 185121/193543 (executing program) 2022/10/05 14:39:31 fetching corpus: 4817, signal 185121/193543 (executing program) 2022/10/05 14:39:33 starting 8 fuzzer processes 14:39:33 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_DEL_MPATH(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x64, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0xffff, 0x6}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0x2000c000}, 0x24000041) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x28, r2, 0x8, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x7, 0x35}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x20008850) sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x7c, 0x1, 0x7, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FILTER={0x2c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x7f}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x7}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x833}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xc2}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xfff}]}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0xffff}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x4}]}, 0x7c}, 0x1, 0x0, 0x0, 0x8010}, 0x4000082) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000540)={&(0x7f0000000480)={0x88, r2, 0x2, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x0, 0x36}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x34c}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x401}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x25}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x15cc}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x4}], @NL80211_ATTR_BSS_SELECT={0x1c, 0xe3, 0x0, 0x1, [@NL80211_BSS_SELECT_ATTR_RSSI_ADJUST={0x6, 0x3, {0x5, 0x5}}, @NL80211_BSS_SELECT_ATTR_BAND_PREF={0x8, 0x2, 0x33a1}, @NL80211_BSS_SELECT_ATTR_RSSI={0x4}, @NL80211_BSS_SELECT_ATTR_RSSI={0x4}]}, @NL80211_ATTR_PBSS={0x4}]}, 0x88}, 0x1, 0x0, 0x0, 0x810}, 0x10) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f00000005c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r4, 0x8008f512, &(0x7f0000000600)) getsockname$inet(r4, &(0x7f0000000640)={0x2, 0x0, @private}, &(0x7f0000000680)=0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), r4) sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r4, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x14, r5, 0x2, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x2) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000840)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LLSEC_GETPARAMS(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x422020}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x70, 0x0, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}]}, 0x70}, 0x1, 0x0, 0x0, 0x44800}, 0x4012) r7 = syz_open_dev$vcsu(&(0x7f0000001cc0), 0xa30, 0x40c40) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001d40), r4) sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r7, &(0x7f0000001e40)={&(0x7f0000001d00)={0x10, 0x0, 0x0, 0x8000040}, 0xc, &(0x7f0000001e00)={&(0x7f0000001d80)={0x68, r8, 0x300, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x1, 0x43}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x68}, 0x1, 0x0, 0x0, 0x4c0480c0}, 0x0) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(0xffffffffffffffff, 0x40089413, &(0x7f0000001e80)=0x8000) sendmsg$NL80211_CMD_GET_WOWLAN(r4, &(0x7f0000001fc0)={&(0x7f0000001ec0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001f80)={&(0x7f0000001f40)={0x1c, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x3e}, @void, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x40001) 14:39:33 executing program 1: process_vm_readv(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000000)=""/117, 0x75}, {&(0x7f0000000080)=""/225, 0xe1}, {&(0x7f0000000180)=""/219, 0xdb}, {&(0x7f0000000280)=""/29, 0x1d}, {&(0x7f00000002c0)=""/170, 0xaa}], 0x5, &(0x7f0000000540)=[{&(0x7f0000000400)=""/8, 0x8}, {&(0x7f0000000440)=""/237, 0xed}], 0x2, 0x0) process_vm_readv(0x0, &(0x7f0000000a00)=[{&(0x7f0000000580)=""/138, 0x8a}, {&(0x7f0000000640)=""/49, 0x31}, {&(0x7f0000000680)=""/47, 0x2f}, {&(0x7f00000006c0)=""/224, 0xe0}, {&(0x7f00000007c0)=""/123, 0x7b}, {&(0x7f0000000840)=""/31, 0x1f}, {&(0x7f0000000880)=""/30, 0x1e}, {&(0x7f00000008c0)=""/43, 0x2b}, {&(0x7f0000000900)=""/218, 0xda}], 0x9, &(0x7f0000000b40)=[{&(0x7f0000000ac0)=""/88, 0x58}], 0x1, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000b80)) r0 = syz_io_uring_setup(0x6cd2, &(0x7f0000000d80)={0x0, 0xc165, 0x1, 0x0, 0x349}, &(0x7f0000ff7000/0x8000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000000e00), &(0x7f0000000e40)=0x0) fstat(r0, &(0x7f0000000e80)) r2 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000f00)={0x12, 0x3, {0x8000, @struct={0x7, 0xdc4}, 0x0, 0x3, 0x100, 0x5, 0x9, 0x2a, 0x52, @struct={0x1ff}, 0x0, 0x800, [0x1, 0x4, 0x200, 0x8, 0x9]}, {0x4, @struct={0x6, 0x6}, 0x0, 0x4, 0xe000000000000000, 0x6, 0x100000000, 0x0, 0x10, @usage=0xed0, 0x7, 0x4, [0x4, 0x3, 0x1, 0x8, 0x8, 0x100]}, {0x80000001, @usage=0x4, 0x0, 0x4, 0x6, 0x10000, 0x4, 0x3, 0x8, @struct={0xdb1, 0x6}, 0x7, 0x9, [0xdde1, 0x4, 0x8, 0x40, 0xf7, 0x800]}, {0x104, 0xa20, 0x5}}) ioctl$BTRFS_IOC_RESIZE(r2, 0x50009403, &(0x7f0000001300)={{}, {@val={r3}, @actul_num={@void, 0xffff, 0x4d}}}) r4 = syz_io_uring_complete(0x0) writev(r4, &(0x7f0000001880)=[{&(0x7f0000001340)="6d11207b33200fb6f6194c469511f1a9b99c23408cfdc12e04de01c40530e2d2c79a29b401c341e69e58cee47c7951181a7a5f40ca8c0de2cdd6bd9c78fb713c699b59162fc5cfeb4fa95223baf9fc590c52ec7d6e85da74bb16697253bbde2eb1aa9ac91985ded4efc06c8384dfa5f6a495ecb88912aab83713a028727a6212aa18dd1009dc3d865ba4c903f38e17fcc336e92d6d9b6cfd718fad4e1ca324129dfdee302007e252e4306d2219f62eb01ec003dd86948fddbd7329898339bff16b483cc75e377ce3ba5d7ba66098908dd2aa93e9556231e480baa702", 0xdc}, {&(0x7f0000001440)="d0305a7409a50186f0aa5edb324311f547e2174d97c694bb23430f15fcdf28b6aff6d6b8d2cdb97d45a5c22350efa26a1afb8c5e185c68ae7bf8f57e720fdb2acd4c6742c599ff9a2d211f5aa5a20711e025477c015b378c905bc9dfcba11fc3c65f887d50c9222dce5d8fed7fbdc1276d8457fe3cfb4905557dacf51b191221c88394f6e263b289e8ab6d49241735a08ef78b3437ed46bb8ce67e0aa6ccdc1d", 0xa0}, {&(0x7f0000001500)="c509ad916dfa7cda008fd37e754d3d6d73c103d3b0b6375feb64e1693d3e22fecad4306b662ab31a61b372701634e7557cc0623ca8e9b2d8021d22958e0c813cb73af46f7cd65d4d47517ee185f227c114d488907bdce0e1566de568de579c81c97923a8042d45542434434d133c0b5f1f7ccb0b55aa4c036cfc002b0f95c2be36de8cb133f15e7d4456fc1393b61188ecc24464d0ad16073663cf32ff9faa4a74600ec502f33f34af66420278d1b703f912c6c6a1b30eeffb481968b90cdf7b1f1a7334e77e7721088b4edb1bf88965410c17f68cefe49d", 0xd8}, {&(0x7f0000001600)="259e947fa4d2315d0afffb6ecaf38a2c0abbda64a6d582e024e18ec7ad314f54fa076729214035fb2f2c5ae5b463871f1df437ac99188f96bb733bd13a76788b45badfe99684a387d3beff608a82a65ddec34a910f7c395a0be022401c8cb56e519fc8de811f9545401197a91f5b86fcc88c32a16df5404d9e28b3e9fe76b9cbe0f4300b04d11eb0c617d781aae449fbfc64a18d86ae36158fa675bdf3a240d86760b039fa904083ae5d39dbb92685f22fdc2e55c69bbd721b8ff1658707c78fbb05feff4e4f4af9c0488a0a92ae96fc5fbfd14a3e34cac340aa82aee737e923e3d2a82c2b0c9f", 0xe7}, {&(0x7f0000001700)="4c12e9213f5a0eb09b232d13e5af2f582b8d8c1ee7b3058a12cf41370fc6953b32b107edce14513f9921ddbd2f9a0b85f8f1ed3c036657d80842a76b6f827a5203ad2152d45666db2daea6229b6d88bf8824c48004a7e3e353bf2aeae1b2c48ad1cbbeb93339b2b33e36e7d37fec8c283bab55a69bb87fa646de87f2dfece3f48b8f8940a4ea0edf975313b90cdc01ccf816b4c628631afac60a6777a2d1ba98a48de98e4937412e319d7ec6d4f1617c4e366c0ec5b3", 0xb6}, {&(0x7f00000017c0)="a0585bdfa27cba59901fa615b1ef9b4705b6baf27d2c971012ddd6491b813b5d6b0c008f2deef1ec3eacd985a915ad2dbf1423d8db749d286b60ff93ffdab75c5213b85772c76defd7d31c7b373620de084ba8d7aa69f7024f7fe5216a6aa3725a5a0b9f97e220b7a8d1e31afb46bb9c9abb047b7496435239e76bbd0013f1eae3963ecbf59cff", 0x87}], 0x6) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000001900)='/sys/class/devlink', 0x80, 0x107) r6 = dup2(r0, r2) ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f0000001940)={{0x1, 0x1, 0x18, r6, {0x1, 0x9}}, './file0\x00'}) process_vm_readv(0xffffffffffffffff, &(0x7f0000001d40)=[{&(0x7f0000001980)=""/118, 0x76}, {&(0x7f0000001a00)=""/147, 0x93}, {&(0x7f0000001ac0)=""/60, 0x3c}, {&(0x7f0000001b00)=""/178, 0xb2}, {&(0x7f0000001bc0)=""/59, 0x3b}, {&(0x7f0000001c00)=""/88, 0x58}, {&(0x7f0000001c80)=""/96, 0x60}, {&(0x7f0000001d00)=""/14, 0xe}], 0x8, &(0x7f0000001f00)=[{&(0x7f0000001dc0)=""/223, 0xdf}, {&(0x7f0000001ec0)=""/25, 0x19}], 0x2, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001f80), r6) sendmsg$NL80211_CMD_DEL_STATION(r5, &(0x7f0000002080)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000002040)={&(0x7f0000001fc0)={0x74, r7, 0xc1e, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x15}}}}, [@NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x4}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x4}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x1}, @NL80211_ATTR_STA_SUPPORTED_RATES={0xa, 0x13, [{0x12, 0x1}, {0xc, 0x1}, {0x1b}, {0x9, 0x1}, {0x12, 0x1}, {0x24}]}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x2}, @NL80211_ATTR_STA_PLINK_ACTION={0x5}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x2}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0xfffc}]}, 0x74}}, 0x20048004) r8 = syz_open_dev$vcsa(&(0x7f00000020c0), 0x4fb2f87c, 0x400000) fsetxattr$security_selinux(r8, &(0x7f0000002100), &(0x7f0000002140)='unconfined_u:system_r:insmod_t:s0-s0:c0.c1023\x00', 0x2e, 0x3) r9 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000003, 0x10010, r0, 0x8000000) syz_io_uring_submit(r9, r1, &(0x7f0000002180)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x2004, @fd, 0x14, 0x0, 0x0, 0x19, 0x0, {0x2}}, 0x4) 14:39:33 executing program 2: ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x9362, 0x0) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x0) ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001) sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, 0x0, 0x200, 0x70bd26, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x2, 0x58}}}}, [@NL80211_ATTR_MCAST_RATE={0x8}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x37}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1e0}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x1000) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x68003, 0x0) ioctl$BTRFS_IOC_DEFRAG_RANGE(r0, 0x40309410, &(0x7f00000001c0)={0xde2, 0x7fffffff, 0x3, 0xffffffff, 0x2, [0x0, 0x5, 0x5, 0x3]}) ioctl$RTC_ALM_READ(0xffffffffffffffff, 0x80247008, &(0x7f0000000200)) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(0xffffffffffffffff, 0xf502, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TCXONC(r1, 0x540a, 0x1) sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x20, 0x0, 0x8, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x20}, 0x1, 0x0, 0x0, 0x85}, 0x4008004) ioctl$RTC_EPOCH_READ(r1, 0x8008700d, &(0x7f0000000380)) sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x24, 0x0, 0x8, 0x70bd27, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0x80000000}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40800}, 0x4000080) r2 = syz_open_dev$mouse(&(0x7f00000004c0), 0x4, 0x80402) ioctl$KDSKBMODE(r2, 0x4b45, &(0x7f0000000500)=0x1) io_setup(0x7fff, &(0x7f0000000540)=0x0) r4 = eventfd2(0x4, 0x1) r5 = syz_open_procfs$namespace(0x0, &(0x7f00000016c0)='ns/time\x00') r6 = dup(r2) io_submit(r3, 0x8, &(0x7f0000001c40)=[&(0x7f0000000640)={0x0, 0x0, 0x0, 0x3, 0x6, r2, &(0x7f0000000580)="75931aaf79c8449758e8e18750c8049d838c44d746559475b4c9187d23301a6f2d1dcf08e4df2e159b8b9df7ff1e6bf0b6c6b87db7d8b89a449ab058fa049ef8eb57dcad90e85a298d047555624ff3120103cfe736572e3bf38bb345b6ae3e484dee38f54c2f1dd9dfda53fb4c795013433d8a64b9a209815c55c37bfe2230eb9c7f4d5265f3c2487a99cc291652e98ada0bd2166fc0c3c701f87eec11dcdadb0d37708f3f", 0xa5, 0xff, 0x0, 0x2, r4}, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x7, 0xffff, r0, &(0x7f0000000680)="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", 0x1000, 0x4e, 0x0, 0x2, r1}, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x7, 0x0, r5, &(0x7f0000001700)="f150e3df4667aebd862d1a2602e85cb6d4b6f5ecf2456d85ed45ec90617b7f2ac62d3f2db16cbea601b4bd75e98cd86072954c71f8703f742f743bfea317702ce2b11ce1afc5259b1d58ca9ae5711a1edb61500d79eb284bb2246af4b8e8ef57379be8947ba61583bb2fb6fd64da4cb190aca14e204d111e7c73606ca61f419d", 0x80, 0x2000000000, 0x0, 0x2, r6}, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x8, 0xff, r0, &(0x7f00000017c0)="0f0bded78f9da71173e8e5499639071e195924ad997d3fb2a605d6c45eb94925f7be9136cbe76021a2a23d97f7ed1d59e01fa0c049eac64c5817eccf1ae914be0e908c244b61b34d6eb73219471dff15964bf8063035a546af2ecc905a25817f15ddee730f35faab1452077eb55d40cf8dfdd1de48e9e66f07bf9d59889e0fa00f8e36b21b32af3b20b67f403df4cf0b30a20d3f9f66c541ab7d66cd73a5c53e02e1874d5e1af3529fc5d070b7595aaf3da0326af5b0dc1ecf9becf301cf908ade71ed", 0xc3, 0x3, 0x0, 0x0, r1}, &(0x7f0000001a00)={0x0, 0x0, 0x0, 0x8, 0x1, 0xffffffffffffffff, &(0x7f0000001940)="d711441813c86a4643dc05cdafa2153fdb3943ba0c0371eb25520725101984dfd0a9417870e7fe1763d8e6af9332b0902d0651d54d7f471a682b92ba155037c6490ce7e178004feb04c97fe2076296bf9906def42584fbd4174a1d6421504611bf6c9d05a2400d0a54ce555c42deaedeac02faa6cf8b71d5d5bc4a0fbd6257d8f351d656b7ea0bd29ccfe078", 0x8c, 0x1, 0x0, 0x2, r1}, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0xc, 0x5, r2, &(0x7f0000001a40)="ef49a588132b2454a0c0ec40eb3d3e211510e044e532565efc45ea11b9205d3122ef09cf3b5a93f5b68d05746a4a4da8e0", 0x31, 0x100, 0x0, 0x3, r2}, &(0x7f0000001b40)={0x0, 0x0, 0x0, 0x1, 0x5a89, r0, &(0x7f0000001ac0)="cb158b72f861c581067b8ac3448dcfd5d0d817a4662f0072d513467cb9a749b7fc216a2fd45fcb2151b0f6a4c874ec75a5436d86e50e0ecd3c6c2cec31ebcc69821f6d960b298814e7240017de603b1a6e4b85bd76e38b1921abdcf4", 0x5c, 0xffff, 0x0, 0x2, r1}, &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x5, 0x0, r2, &(0x7f0000001b80)="6c9e4ec6812d29c33e658aadf4a1a26b2e4b79c4d636f9d354a38649d620d6c92f5e4c741cc025324b64e7b39fccd3e8e39768461792f6c86c95e23104569d93aa1d657f581b9afd9b6e27", 0x4b, 0x9, 0x0, 0x0, r1}]) 14:39:33 executing program 3: sendmsg$NLBL_CALIPSO_C_LISTALL(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x5c, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000800}, 0x44000) r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DEST(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0xb8, r1, 0x200, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x48, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2c}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0xff}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_DAEMON={0x54, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6tnl0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_hsr\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x20}]}, 0xb8}, 0x1, 0x0, 0x0, 0x4004000}, 0x20000040) r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$NLBL_MGMT_C_LISTDEF(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2800204}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x64, r2, 0x10, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_DOMAIN={0x9, 0x1, 'IPVS\x00'}, @NLBL_MGMT_A_DOMAIN={0x8, 0x1, ',:#\x00'}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @rand_addr=' \x01\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0xf}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x1}]}, 0x64}, 0x1, 0x0, 0x0, 0xc0}, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000500), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x54, r3, 0x0, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xfffffffc}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x3}, @BATADV_ATTR_GW_SEL_CLASS={0x8}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}]}, 0x54}, 0x1, 0x0, 0x0, 0x200080e0}, 0x4) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x34, r0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x20000084) r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_NETID(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x1c, r5, 0x1, 0x70bd27, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}}, 0x4004804) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000900)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x2c, 0x0, 0x0, 0x70bd2a, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x3}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x20}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000810}, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000a00)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) pipe2(&(0x7f0000000a40), 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) sendmsg$AUDIT_GET(r8, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x10, 0x3e8, 0x400, 0x70bd25, 0x25dfdbfe, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x90}, 0x20000842) r9 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000b80), 0x101000, 0x0) ioctl$AUTOFS_IOC_READY(r9, 0x9360, 0x9) [ 67.110406] audit: type=1400 audit(1664980773.971:6): avc: denied { execmem } for pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 14:39:33 executing program 7: ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) fchmod(r0, 0x0) r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/keycreate\x00', 0x2, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f0000000080)={0x1, 0x5}) connect$unix(r0, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(0xffffffffffffffff, 0x8040942d, &(0x7f0000000140)) r2 = openat$cgroup_ro(r0, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) connect$unix(r2, &(0x7f00000001c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e) syncfs(r1) ioctl$BTRFS_IOC_SCRUB_CANCEL(r2, 0x941c, 0x0) r3 = syz_open_dev$char_usb(0xc, 0xb4, 0xeb) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r3, 0x80489439, &(0x7f0000000240)) r4 = syz_open_dev$vcsn(&(0x7f00000002c0), 0x100000001, 0x40880) fcntl$getown(r4, 0x9) recvmmsg(r2, &(0x7f0000000d40)=[{{&(0x7f0000000300)=@in6={0xa, 0x0, 0x0, @initdev}, 0x80, &(0x7f0000000880)=[{&(0x7f0000000380)=""/8, 0x8}, {&(0x7f00000003c0)=""/20, 0x14}, {&(0x7f0000000400)=""/116, 0x74}, {&(0x7f0000000480)=""/139, 0x8b}, {&(0x7f0000000540)=""/175, 0xaf}, {&(0x7f0000000600)=""/202, 0xca}, {&(0x7f0000000700)=""/124, 0x7c}, {&(0x7f0000000780)=""/208, 0xd0}], 0x8}, 0x200}, {{&(0x7f0000000900)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000980)=""/234, 0xea}, {&(0x7f0000000a80)}, {&(0x7f0000000ac0)=""/214, 0xd6}, {&(0x7f0000000bc0)=""/138, 0x8a}, {&(0x7f0000000c80)=""/25, 0x19}], 0x5}, 0x25200a55}], 0x2, 0x40000000, &(0x7f0000000dc0)) getsockopt$IP6T_SO_GET_ENTRIES(r5, 0x29, 0x41, &(0x7f0000000e00)={'security\x00', 0x4d, "5c64e5d6c0c550edec0639faccdae21d32eece4328c9f1cf553a1c4c62e831bf0b12542fcac0d731c83decd275df2bee02b94ebc42ed874e0a26410f0e54874ef73adcec15fc8d5886552fcdba"}, &(0x7f0000000e80)=0x71) r6 = syz_mount_image$nfs(&(0x7f0000000ec0), &(0x7f0000000f00)='./file0\x00', 0x5, 0x2, &(0x7f0000002040)=[{&(0x7f0000000f40)="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", 0x1000, 0x5}, {&(0x7f0000001f40)="b64beb7e28760988307ea1392c258ca571c61b06fd743c69918779014bf568ceaab5870d09dd0ad7db9dbf4754aaadcd0f013ffd0421df7029cd3703945f5b5c5c8ea8711c6fe011bee415a65c5bac07cb51ee2cf20d27488cafecf526a5399368e29e584be01d499994872c94a8b706f029ab628b2677e8affaf907ad2c8ccd47c2dc4986fd6319f75bffd3ee7a7c8d37b06e1ed748ee2dc7474a184edd6660bc3d4dea2ff6b665c9144ae2aa4a2c95ecd9f473a783eaecc00bdab2cd3f42c8f51e20a0a71e756e072cc7081139bee4a020d3f745a961a5", 0xd8, 0x6}], 0x1000, &(0x7f0000002080)={[{'hugetlb.1GB.usage_in_bytes\x00'}, {'/proc/self/attr/keycreate\x00'}], [{@uid_lt={'uid<', 0xffffffffffffffff}}]}) fcntl$dupfd(r6, 0x0, r2) r7 = syz_open_dev$mouse(&(0x7f0000002100), 0xad, 0x210800) sendmmsg$unix(r7, &(0x7f0000002740)=[{{&(0x7f0000002140)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f00000026c0)=[{&(0x7f00000021c0)="6a1beab04a3dabfe05029f2aebf499d02285ba7f65772bf7350cbc5cee2c95ceb7ab641821fcc260be78976a2c090ad7ab077708c6aa45aea630a5debe7b29d9eaa8aa668f887692e7379e66b50d903c1c18b71ff4e01f69e892fb2ee5dce050a35bc00506bd0694cdcecc1ba130781eaa45e04de78e9cef195aa13594e3fa2809f76d335c72e8e8f6864d2d32334a57b524a1d1d026fb71c47e154d9b344f74bc88196aaa465d66b93c7414b622bc9023729a22b9f5dff034df89aa150665c9ff792a242374e258a035818543bcc9c65703ceee09428e70cb882b6d34a6a0e7978adc615fb8b56ba85f791b11c433bd67875100021d8a356d7aadfe99", 0xfd}, {&(0x7f00000022c0)="498b80ac2ad3b9f8a4f82cb16147fd870f8a9a36f2d3e5f875c5", 0x1a}, {&(0x7f0000002300)="8ccf80eb0354acf9ca13076af8ffc3ea505031ce0dad3dcf6de7408834811f9baaab4403d1941c798dc54bac1a6d0f6f45f52b24df1178104410849cc441764153cdd791c7c5842ff51f1d6d09716b58b313e4e402b71d62946577b03caeddd986461f7a06f2e818387dc9e12682eac244cfef4eaf31009b3f114034d7a496c6c7ba77ec5edba8c2fad15dfcebf5fdfd952d5621e915e7b26c22a7edb6a08e0c11228f7f9def275a6964fdc87cceb6725d517d17dde08be060c1cd8796ece64f5706ac71a23063dbe33702184e73172d408053b4d7cd", 0xd6}, {&(0x7f0000002400)="d95613c7d5e7233e8c3ccfa14636a123f1817b16dc5269d9a6e433104b4e99d97ef280bf831ace145c4987c45e777057e602837b7ec0c27ba5ab6b3b8cee23c55930e0d7d341441e46039cba9c4ed56c357efa87d8ffa326c6e70ea11a3a016df36944a1fe93da6f4360470e905bb5bc4316863cef2d6adb23ef5d4b47", 0x7d}, {&(0x7f0000002480)="ed55292a655f97ee81cb8f491bd81924f524f047a7dae7e35df127f20eb8925de623f987054065ec1db998f815c08912d1f877d23e5aa45703d78fa47ed089e263b9f0f719dbdadee6d1b2e2ef1ba4b800f075b9d141be8530cd", 0x5a}, {&(0x7f0000002500)="d6b6f7597e5869b262996d855b7584113cfdc949b854d4c31e1a99afbcd11274018ad654fb802d9c0e4c7cb43ddcce4177ebb4e3929387dc8b0adfcfafaf6ac3002c8013256104c1f259cea2a65d5e356fc27b321f270245c6d698dbb34d55b367b9ffc8b28aaee9b26763623d35479deca7d930019059f3e50677dcae8beeba9e6c60a2a2f9a78671ec044010728f4e440ebb65986270525fdbd7f752eae145822f9ab4b8db3f54c6ba3a5c0ff3b1f840f50f62574d29ee50b0e81f50d83c86ea4501657e5871664385922861c3bb0f884658a9933e679674865a174299a97026059a966ebdb9487fad71", 0xeb}, {&(0x7f0000002600)="5528aec5a8ffd1c36163718eeec2cbd469ff51b00930b02d2497aac704a4aad3c747030f34c03ba4da5375a6695dd30aa685ac7b0f0a7d8ff86b8ae5d5109c1badbb36fb5c3451e7762b9aa47ad2d626f1b5f3e30d5cd1493315e89d2d6f4e4d9e921e6a907edba230bb344fab4bba833de916cf8448b9b514e8941edd454c567eb98e4af001e001fdc616f3e7b7171503ecf469802f43c96641162392b4ab", 0x9f}], 0x7, 0x0, 0x0, 0x4000000}}], 0x1, 0x24004000) 14:39:33 executing program 4: r0 = syz_open_dev$hiddev(&(0x7f0000000000), 0x0, 0x8000) ioctl$HIDIOCGPHYS(r0, 0x80404812, &(0x7f0000000040)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000080)=0x0) fcntl$lock(r0, 0x7, &(0x7f00000000c0)={0x1, 0x0, 0x101, 0x3, r1}) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000100)=0x20) recvmsg(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000140)=@ax25={{0x3, @null}, [@default, @bcast, @rose, @default, @null, @remote, @rose]}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/4, 0x4}, {&(0x7f0000000200)=""/232, 0xe8}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000340)=""/63, 0x3f}, {&(0x7f0000000380)=""/99, 0x63}, {&(0x7f0000000400)=""/100, 0x64}, {&(0x7f0000000480)=""/152, 0x98}, {&(0x7f0000000540)=""/99, 0x63}], 0x8, &(0x7f0000000640)=""/24, 0x18}, 0x40000102) ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x80047213, &(0x7f00000006c0)) r2 = timerfd_create(0x6, 0x100800) ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r2, 0x8008f512, &(0x7f0000000700)) r3 = dup2(r2, r0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000900)={'ip6tnl0\x00', &(0x7f0000000880)={'syztnl0\x00', 0x0, 0x29, 0x3, 0x2, 0x8, 0x0, @remote, @dev={0xfe, 0x80, '\x00', 0xe}, 0x1, 0x700, 0x3, 0x7}}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f00000009c0)={'syztnl1\x00', &(0x7f0000000940)={'sit0\x00', 0x0, 0x2f, 0x1f, 0x7d, 0xffffffff, 0x27, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast2, 0x0, 0x7, 0x80, 0x2}}) sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000000b40)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0xa971a43858070cd3}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a00)={0xec, 0x0, 0x200, 0x70bd25, 0x25dfdbfb, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9d51071b3e745fc0}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0xec}}, 0x24000005) sendmsg$TIPC_CMD_GET_NODES(r3, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x1c, 0x0, 0x1, 0x70bd27, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000014) r6 = syz_io_uring_complete(0x0) fcntl$F_GET_RW_HINT(r6, 0x40b, &(0x7f0000000c80)) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r3, 0x89f4, &(0x7f0000000d40)={'syztnl2\x00', &(0x7f0000000cc0)={'syztnl2\x00', r4, 0x29, 0x1, 0x1f, 0x2, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}, @private2, 0x700, 0x1, 0xb9, 0x1c7}}) r7 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000d80), 0x628400, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r7, 0x8918, &(0x7f0000000dc0)={'caif0\x00', {0x2, 0x0, @initdev}}) sendmsg$AUDIT_GET(0xffffffffffffffff, &(0x7f0000000f00)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x10, 0x3e8, 0x2, 0x70bd2d, 0x25dfdbfd, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x80}, 0x4) 14:39:33 executing program 6: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r0, 0x4, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x4000000) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x8000) sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)={0xec, 0x0, 0x2, 0x201, 0x0, 0x0, {0xa, 0x0, 0x5}, [@CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x9}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x3}, @CTA_EXPECT_NAT={0x78, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_TUPLE={0x5c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1}, {0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}]}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}]}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x3}, @CTA_EXPECT_TUPLE={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x14, 0x4, @remote}}}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x2004c840}, 0x4000) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) socketpair(0x6, 0x80000, 0x1, &(0x7f0000001a40)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$NFT_MSG_GETGEN(r3, &(0x7f0000001b40)={&(0x7f0000001a80)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001b00)={&(0x7f0000001ac0)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x5}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000090}, 0x20000000) syz_genetlink_get_family_id$nl80211(&(0x7f0000001b80), r2) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000001c00)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_GET_SEC_DEV(0xffffffffffffffff, &(0x7f0000001cc0)={&(0x7f0000001bc0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001c80)={&(0x7f0000001c40)={0x3c, 0x0, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40c0}, 0x11) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000001dc0)={&(0x7f0000001d00)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001d80)={&(0x7f0000001d40)={0x40, 0x0, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x6}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_PAGE={0x5, 0x7, 0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x11}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004041}, 0x805) sendmsg$IPSET_CMD_RENAME(0xffffffffffffffff, &(0x7f0000001ec0)={&(0x7f0000001e00)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001e80)={&(0x7f0000001e40)={0x30, 0x5, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x1) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_open_dev$vcsa(&(0x7f0000001f00), 0x8, 0xc0000) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001f80), r3) sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f0000002180)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000002140)={&(0x7f0000001fc0)={0x178, r7, 0x800, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x8, 0x51}}}}, [@mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x28, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "da5bfda2810bc3ebbc3bbf3d12e30a896af9d92d308f822d"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MNTR_FLAGS={0x1c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}], @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x5}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "44ad7d8a4c2b878e60be90061f02267ac9a31baf3eccd4da"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}], @NL80211_ATTR_4ADDR={0x5}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}], @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x178}, 0x1, 0x0, 0x0, 0x240080c0}, 0x4000800) sendmsg$ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f0000002280)={&(0x7f00000021c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000002240)={&(0x7f0000002200)={0x30, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_COALESCE_TX_USECS_HIGH={0x8, 0x15, 0x3}, @ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0xfc0}, @ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x20004000) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f00000025c0)={&(0x7f00000022c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000002580)={&(0x7f0000002300)={0x264, 0x0, 0x10, 0x70bd29, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_TAGLST={0x54, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}, {0x5}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x2}, {0x5}, {0x5}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0x18, 0xc, 0x0, 0x1, [{0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8890}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x57b77cb9}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSCATLST={0xe8, 0xc, 0x0, 0x1, [{0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4e5c205e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6869}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x23bda4d8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xaf85}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3c85}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9655}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa868}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7173aa6a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf269}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1378fd9c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x66bab9cd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x72858a13}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x301b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x17e035ff}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x781606}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x682fa46}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9b1e}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x61a5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x541d4101}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfd88}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x73616935}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x68a81179}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2049e5a8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdcbc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb310}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0xd0, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x29d29b8c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2778ec6b}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x12c6d70d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2e}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x38ad71c4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x42076066}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1b85e522}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6720340c}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x25}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x57ebf6ac}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x763fba35}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4ced1193}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x37fd0a75}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x66c540d3}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x70ac2294}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}]}]}, 0x264}, 0x1, 0x0, 0x0, 0x20004081}, 0x20040001) 14:39:33 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICLIST(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x800, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x60, 0x0, 0x211, 0x70bd25, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x4c080}, 0x0) sendmsg$NLBL_MGMT_C_REMOVE(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0xcac554de66709c5, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x11}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000010) r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_ACCEPT(r0, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0x8c, r2, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private0}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'gre0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'vcan0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}, @NLBL_UNLABEL_A_SECCTX={0x2b, 0x7, 'system_u:object_r:gpg_helper_exec_t:s0\x00'}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4040000}, 0x48000) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wlan0\x00', 0x0}) sendmsg$DEVLINK_CMD_SB_POOL_SET(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000780)={&(0x7f00000005c0)={0x188, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x998}, {0x6, 0x11, 0x800}, {0x8, 0x13, 0x80}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x6}, {0x6}, {0x8, 0x13, 0x8001}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0x3f}, {0x8, 0x13, 0x1}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x7}, {0x8, 0x13, 0xc3c0}, {0x5, 0x14, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x5}, {0x6, 0x11, 0x400}, {0x8, 0x13, 0x80000001}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x4}, {0x8, 0x13, 0x9}, {0x5, 0x14, 0x1}}]}, 0x188}, 0x1, 0x0, 0x0, 0x4000008}, 0x4000851) sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000008c0)={&(0x7f0000000840)={0x60, 0x0, 0x7, 0x801, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFACCT_PKTS={0xc}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x80}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x3ff}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x40040) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000980), r0) sendmsg$IEEE802154_LIST_PHY(r4, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x14, r5, 0x400, 0x70bd2d, 0x25dfdbfb, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x840}, 0x4880) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000c40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000c00)={&(0x7f0000000ac0)={0x134, 0x0, 0x20, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x1, 0x46}}}}, [@NL80211_ATTR_WANT_1X_4WAY_HS={0x4}, @crypto_settings=[@NL80211_ATTR_PMK={0x102, 0xfe, "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"}], @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}]}, 0x134}}, 0x8804) sendmsg$AUDIT_SIGNAL_INFO(0xffffffffffffffff, &(0x7f0000000d40)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x10, 0x3f2, 0x0, 0x70bd28, 0x25dfdbfe, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40001}, 0x1) r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000d80), 0x404000, 0x0) sendmsg$NL80211_CMD_START_SCHED_SCAN(r6, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x28, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x100, 0x5e}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x4000051) sendmsg$NL80211_CMD_GET_KEY(r6, &(0x7f0000000f80)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000f40)={&(0x7f0000000f00)={0x30, 0x0, 0x300, 0x70bd26, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0xffff, 0x4f}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_DEFAULT={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x4) r7 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000001000), r4) sendmsg$NLBL_CALIPSO_C_ADD(0xffffffffffffffff, &(0x7f00000010c0)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)={0x1c, r7, 0x102, 0x70bd2b, 0x25dfdbfd, {}, [@NLBL_CALIPSO_A_DOI={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x20004010) [ 68.352283] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 68.355147] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 68.356453] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 68.359097] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 68.360718] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 68.366433] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 68.367571] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 68.371993] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 68.372098] Bluetooth: hci1: HCI_REQ-0x0c1a [ 68.382725] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 68.394536] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 68.397055] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 68.398184] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 68.400002] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 68.402631] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 68.404959] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 68.406181] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 68.409023] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 68.413294] Bluetooth: hci0: HCI_REQ-0x0c1a [ 68.423466] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 68.436110] Bluetooth: hci2: HCI_REQ-0x0c1a [ 68.441079] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 68.467663] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 68.469639] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 68.476583] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 68.478699] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 68.480695] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 68.483472] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 68.484171] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 68.486740] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 68.486943] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 68.493707] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 68.494427] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 68.495072] Bluetooth: hci3: HCI_REQ-0x0c1a [ 68.498133] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 68.501892] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 68.511580] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 68.512090] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 68.515519] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 68.516724] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 68.516887] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 68.518457] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 68.519219] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 68.521967] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 68.524175] Bluetooth: hci4: HCI_REQ-0x0c1a [ 68.524542] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 68.530875] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 68.536098] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 68.538294] Bluetooth: hci7: HCI_REQ-0x0c1a [ 68.551584] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 68.553544] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 68.554714] Bluetooth: hci6: HCI_REQ-0x0c1a [ 68.570117] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 68.581209] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 68.585171] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 68.597881] Bluetooth: hci5: HCI_REQ-0x0c1a [ 70.431360] Bluetooth: hci1: command 0x0409 tx timeout [ 70.433000] Bluetooth: hci0: command 0x0409 tx timeout [ 70.495968] Bluetooth: hci2: command 0x0409 tx timeout [ 70.559475] Bluetooth: hci6: command 0x0409 tx timeout [ 70.560417] Bluetooth: hci4: command 0x0409 tx timeout [ 70.561306] Bluetooth: hci3: command 0x0409 tx timeout [ 70.562160] Bluetooth: hci7: command 0x0409 tx timeout [ 70.622968] Bluetooth: hci5: command 0x0409 tx timeout [ 72.478851] Bluetooth: hci0: command 0x041b tx timeout [ 72.479354] Bluetooth: hci1: command 0x041b tx timeout [ 72.542893] Bluetooth: hci2: command 0x041b tx timeout [ 72.607476] Bluetooth: hci7: command 0x041b tx timeout [ 72.608006] Bluetooth: hci3: command 0x041b tx timeout [ 72.608485] Bluetooth: hci4: command 0x041b tx timeout [ 72.609376] Bluetooth: hci6: command 0x041b tx timeout [ 72.670891] Bluetooth: hci5: command 0x041b tx timeout [ 74.526912] Bluetooth: hci1: command 0x040f tx timeout [ 74.527496] Bluetooth: hci0: command 0x040f tx timeout [ 74.590905] Bluetooth: hci2: command 0x040f tx timeout [ 74.654994] Bluetooth: hci6: command 0x040f tx timeout [ 74.655745] Bluetooth: hci4: command 0x040f tx timeout [ 74.656549] Bluetooth: hci3: command 0x040f tx timeout [ 74.657283] Bluetooth: hci7: command 0x040f tx timeout [ 74.718900] Bluetooth: hci5: command 0x040f tx timeout [ 76.574870] Bluetooth: hci0: command 0x0419 tx timeout [ 76.575285] Bluetooth: hci1: command 0x0419 tx timeout [ 76.638908] Bluetooth: hci2: command 0x0419 tx timeout [ 76.703294] Bluetooth: hci7: command 0x0419 tx timeout [ 76.703681] Bluetooth: hci3: command 0x0419 tx timeout [ 76.704453] Bluetooth: hci4: command 0x0419 tx timeout [ 76.704842] Bluetooth: hci6: command 0x0419 tx timeout [ 76.766813] Bluetooth: hci5: command 0x0419 tx timeout 14:40:27 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000007c0), 0x2}, 0xcc80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4cdd, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), 0x0) syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2}, 0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000140)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1, r3}}, 0xffff65a1) syz_io_uring_setup(0x2c86, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), 0x0) syz_io_uring_setup(0x3740, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, &(0x7f0000000980)=0x0) syz_io_uring_submit(0x0, r4, &(0x7f00000014c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000780)}, 0x0, 0x0, 0x0, {0x1}}, 0x0) syz_io_uring_setup(0x2037bc, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000480), 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r5 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r5, 0x0) ftruncate(r0, 0xfffffffffffffff7) close(r5) [ 120.740508] audit: type=1400 audit(1664980827.601:7): avc: denied { open } for pid=3731 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.741954] audit: type=1400 audit(1664980827.601:8): avc: denied { kernel } for pid=3731 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.761920] ------------[ cut here ]------------ [ 120.761942] [ 120.761946] ====================================================== [ 120.761950] WARNING: possible circular locking dependency detected [ 120.761954] 6.0.0-next-20221005 #1 Not tainted [ 120.761961] ------------------------------------------------------ [ 120.761965] syz-executor.3/3732 is trying to acquire lock: [ 120.761971] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 120.762013] [ 120.762013] but task is already holding lock: [ 120.762016] ffff88803e1ce020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 120.762043] [ 120.762043] which lock already depends on the new lock. [ 120.762043] [ 120.762046] [ 120.762046] the existing dependency chain (in reverse order) is: [ 120.762049] [ 120.762049] -> #3 (&ctx->lock){....}-{2:2}: [ 120.762063] _raw_spin_lock+0x2a/0x40 [ 120.762076] __perf_event_task_sched_out+0x53b/0x18d0 [ 120.762087] __schedule+0xedd/0x2470 [ 120.762102] schedule+0xda/0x1b0 [ 120.762116] exit_to_user_mode_prepare+0x114/0x1a0 [ 120.762129] syscall_exit_to_user_mode+0x19/0x40 [ 120.762143] do_syscall_64+0x48/0x90 [ 120.762152] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.762166] [ 120.762166] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 120.762180] _raw_spin_lock_nested+0x30/0x40 [ 120.762191] raw_spin_rq_lock_nested+0x1e/0x30 [ 120.762204] task_fork_fair+0x63/0x4d0 [ 120.762222] sched_cgroup_fork+0x3d0/0x540 [ 120.762236] copy_process+0x4183/0x6e20 [ 120.762248] kernel_clone+0xe7/0x890 [ 120.762258] user_mode_thread+0xad/0xf0 [ 120.762268] rest_init+0x24/0x250 [ 120.762281] arch_call_rest_init+0xf/0x14 [ 120.762300] start_kernel+0x4c6/0x4eb [ 120.762318] secondary_startup_64_no_verify+0xe0/0xeb [ 120.762333] [ 120.762333] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 120.762346] _raw_spin_lock_irqsave+0x39/0x60 [ 120.762357] try_to_wake_up+0xab/0x1930 [ 120.762370] up+0x75/0xb0 [ 120.762385] __up_console_sem+0x6e/0x80 [ 120.762402] console_unlock+0x46a/0x590 [ 120.762417] vt_ioctl+0x2822/0x2ca0 [ 120.762430] tty_ioctl+0x785/0x16b0 [ 120.762441] __x64_sys_ioctl+0x19a/0x210 [ 120.762455] do_syscall_64+0x3b/0x90 [ 120.762465] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.762478] [ 120.762478] -> #0 ((console_sem).lock){....}-{2:2}: [ 120.762491] __lock_acquire+0x2a02/0x5e70 [ 120.762508] lock_acquire+0x1a2/0x530 [ 120.762524] _raw_spin_lock_irqsave+0x39/0x60 [ 120.762535] down_trylock+0xe/0x70 [ 120.762551] __down_trylock_console_sem+0x3b/0xd0 [ 120.762567] vprintk_emit+0x16b/0x560 [ 120.762583] vprintk+0x84/0xa0 [ 120.762599] _printk+0xba/0xf1 [ 120.762611] report_bug.cold+0x72/0xab [ 120.762628] handle_bug+0x3c/0x70 [ 120.762637] exc_invalid_op+0x14/0x50 [ 120.762647] asm_exc_invalid_op+0x16/0x20 [ 120.762660] group_sched_out.part.0+0x2c7/0x460 [ 120.762678] ctx_sched_out+0x8f1/0xc10 [ 120.762694] __perf_event_task_sched_out+0x6d0/0x18d0 [ 120.762705] __schedule+0xedd/0x2470 [ 120.762719] schedule+0xda/0x1b0 [ 120.762733] exit_to_user_mode_prepare+0x114/0x1a0 [ 120.762744] syscall_exit_to_user_mode+0x19/0x40 [ 120.762757] do_syscall_64+0x48/0x90 [ 120.762767] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.762780] [ 120.762780] other info that might help us debug this: [ 120.762780] [ 120.762782] Chain exists of: [ 120.762782] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 120.762782] [ 120.762797] Possible unsafe locking scenario: [ 120.762797] [ 120.762800] CPU0 CPU1 [ 120.762802] ---- ---- [ 120.762804] lock(&ctx->lock); [ 120.762810] lock(&rq->__lock); [ 120.762816] lock(&ctx->lock); [ 120.762822] lock((console_sem).lock); [ 120.762828] [ 120.762828] *** DEADLOCK *** [ 120.762828] [ 120.762830] 2 locks held by syz-executor.3/3732: [ 120.762837] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 120.762867] #1: ffff88803e1ce020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 120.762893] [ 120.762893] stack backtrace: [ 120.762896] CPU: 1 PID: 3732 Comm: syz-executor.3 Not tainted 6.0.0-next-20221005 #1 [ 120.762909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 120.762915] Call Trace: [ 120.762919] [ 120.762923] dump_stack_lvl+0x8b/0xb3 [ 120.762943] check_noncircular+0x263/0x2e0 [ 120.762959] ? format_decode+0x26c/0xb50 [ 120.762977] ? print_circular_bug+0x450/0x450 [ 120.762994] ? simple_strtoul+0x30/0x30 [ 120.763011] ? perf_swevent_event+0x6c/0x550 [ 120.763028] ? format_decode+0x26c/0xb50 [ 120.763046] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 120.763065] __lock_acquire+0x2a02/0x5e70 [ 120.763086] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 120.763109] lock_acquire+0x1a2/0x530 [ 120.763126] ? down_trylock+0xe/0x70 [ 120.763144] ? lock_release+0x750/0x750 [ 120.763165] ? vprintk+0x84/0xa0 [ 120.763183] _raw_spin_lock_irqsave+0x39/0x60 [ 120.763196] ? down_trylock+0xe/0x70 [ 120.763213] down_trylock+0xe/0x70 [ 120.763230] ? vprintk+0x84/0xa0 [ 120.763247] __down_trylock_console_sem+0x3b/0xd0 [ 120.763265] vprintk_emit+0x16b/0x560 [ 120.763284] vprintk+0x84/0xa0 [ 120.763302] _printk+0xba/0xf1 [ 120.763314] ? record_print_text.cold+0x16/0x16 [ 120.763331] ? report_bug.cold+0x66/0xab [ 120.763350] ? group_sched_out.part.0+0x2c7/0x460 [ 120.763369] report_bug.cold+0x72/0xab [ 120.763388] handle_bug+0x3c/0x70 [ 120.763399] exc_invalid_op+0x14/0x50 [ 120.763409] asm_exc_invalid_op+0x16/0x20 [ 120.763423] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 120.763444] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 2b 08 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 120.763455] RSP: 0018:ffff88803ed3fc48 EFLAGS: 00010006 [ 120.763464] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 120.763472] RDX: ffff88801f54d040 RSI: ffffffff81566da7 RDI: 0000000000000005 [ 120.763480] RBP: ffff888018918000 R08: 0000000000000005 R09: 0000000000000001 [ 120.763487] R10: 0000000000000000 R11: ffffffff865b605b R12: ffff88803e1ce000 [ 120.763495] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 120.763506] ? group_sched_out.part.0+0x2c7/0x460 [ 120.763525] ? group_sched_out.part.0+0x2c7/0x460 [ 120.763545] ctx_sched_out+0x8f1/0xc10 [ 120.763564] __perf_event_task_sched_out+0x6d0/0x18d0 [ 120.763578] ? lock_is_held_type+0xd7/0x130 [ 120.763593] ? __perf_cgroup_move+0x160/0x160 [ 120.763604] ? set_next_entity+0x304/0x550 [ 120.763621] ? update_curr+0x267/0x740 [ 120.763639] ? lock_is_held_type+0xd7/0x130 [ 120.763654] __schedule+0xedd/0x2470 [ 120.763672] ? io_schedule_timeout+0x150/0x150 [ 120.763688] ? trace_rcu_dyntick+0x1a7/0x250 [ 120.763708] schedule+0xda/0x1b0 [ 120.763724] exit_to_user_mode_prepare+0x114/0x1a0 [ 120.763736] syscall_exit_to_user_mode+0x19/0x40 [ 120.763750] do_syscall_64+0x48/0x90 [ 120.763760] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.763774] RIP: 0033:0x7f66732c9b19 [ 120.763783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.763793] RSP: 002b:00007f667083f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.763804] RAX: 0000000000000001 RBX: 00007f66733dcf68 RCX: 00007f66732c9b19 [ 120.763811] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f66733dcf6c [ 120.763819] RBP: 00007f66733dcf60 R08: 000000000000000e R09: 0000000000000000 [ 120.763826] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f66733dcf6c [ 120.763833] R13: 00007fff384a94df R14: 00007f667083f300 R15: 0000000000022000 [ 120.763846] [ 120.820175] WARNING: CPU: 1 PID: 3732 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 120.820807] Modules linked in: [ 120.821036] CPU: 1 PID: 3732 Comm: syz-executor.3 Not tainted 6.0.0-next-20221005 #1 [ 120.821556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 120.822103] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 120.822479] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 2b 08 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 120.823705] RSP: 0018:ffff88803ed3fc48 EFLAGS: 00010006 [ 120.824064] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 120.824542] RDX: ffff88801f54d040 RSI: ffffffff81566da7 RDI: 0000000000000005 [ 120.825039] RBP: ffff888018918000 R08: 0000000000000005 R09: 0000000000000001 [ 120.825517] R10: 0000000000000000 R11: ffffffff865b605b R12: ffff88803e1ce000 [ 120.825995] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 120.826479] FS: 00007f667083f700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 120.827020] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.827417] CR2: 00007ff742fe0610 CR3: 00000000205a4000 CR4: 0000000000350ee0 [ 120.827902] Call Trace: [ 120.828085] [ 120.828246] ctx_sched_out+0x8f1/0xc10 [ 120.828531] __perf_event_task_sched_out+0x6d0/0x18d0 [ 120.828889] ? lock_is_held_type+0xd7/0x130 [ 120.829198] ? __perf_cgroup_move+0x160/0x160 [ 120.829506] ? set_next_entity+0x304/0x550 [ 120.829807] ? update_curr+0x267/0x740 [ 120.830084] ? lock_is_held_type+0xd7/0x130 [ 120.830385] __schedule+0xedd/0x2470 [ 120.830654] ? io_schedule_timeout+0x150/0x150 [ 120.830977] ? trace_rcu_dyntick+0x1a7/0x250 [ 120.831287] schedule+0xda/0x1b0 [ 120.831539] exit_to_user_mode_prepare+0x114/0x1a0 [ 120.831878] syscall_exit_to_user_mode+0x19/0x40 [ 120.832216] do_syscall_64+0x48/0x90 [ 120.832474] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.832830] RIP: 0033:0x7f66732c9b19 [ 120.833104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.834330] RSP: 002b:00007f667083f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.834846] RAX: 0000000000000001 RBX: 00007f66733dcf68 RCX: 00007f66732c9b19 [ 120.835343] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f66733dcf6c [ 120.835835] RBP: 00007f66733dcf60 R08: 000000000000000e R09: 0000000000000000 [ 120.836323] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f66733dcf6c [ 120.836807] R13: 00007fff384a94df R14: 00007f667083f300 R15: 0000000000022000 [ 120.837301] [ 120.837466] irq event stamp: 2292 [ 120.837703] hardirqs last enabled at (2291): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 120.838353] hardirqs last disabled at (2292): [] __schedule+0x1225/0x2470 [ 120.838924] softirqs last enabled at (1506): [] __irq_exit_rcu+0x11b/0x180 [ 120.839512] softirqs last disabled at (1361): [] __irq_exit_rcu+0x11b/0x180 [ 120.840093] ---[ end trace 0000000000000000 ]--- 14:40:28 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x800) fchownat(r0, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, 0xffffffffffffffff, 0x800) r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') openat(r1, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) 14:40:28 executing program 3: r0 = syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x4}}, 0x0, 0x6, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB='\x004']) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xc0000008}) fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff) acct(&(0x7f00000001c0)='./file1\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r2, &(0x7f0000001180)=ANY=[], 0x220) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x1, 0x1, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480), 0x7}, 0x0, 0x0, 0xfffffffd, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000004c0)='./file1\x00', 0x0, 0x28) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000340)={{0x101, 0x7}, 0x100, './file1\x00'}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000300)={0x2000}) fsconfig$FSCONFIG_SET_STRING(r4, 0x6, 0x0, 0x0, 0x0) fsmount(r4, 0x0, 0x0) [ 121.273249] loop3: detected capacity change from 0 to 40 [ 121.329143] loop3: detected capacity change from 0 to 40 14:40:28 executing program 3: r0 = syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x4}}, 0x0, 0x6, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB='\x004']) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xc0000008}) fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff) acct(&(0x7f00000001c0)='./file1\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r2, &(0x7f0000001180)=ANY=[], 0x220) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x1, 0x1, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480), 0x7}, 0x0, 0x0, 0xfffffffd, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000004c0)='./file1\x00', 0x0, 0x28) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000340)={{0x101, 0x7}, 0x100, './file1\x00'}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000300)={0x2000}) fsconfig$FSCONFIG_SET_STRING(r4, 0x6, 0x0, 0x0, 0x0) fsmount(r4, 0x0, 0x0) [ 121.415851] loop3: detected capacity change from 0 to 40 14:40:28 executing program 3: r0 = syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x3f, 0x3, &(0x7f0000000480)=[{&(0x7f0000000300)="f4ed7efa4f5d1dbf13871d905fbbd6e0759a31107dad1332f0cdbf269bf113ed3d06d6", 0x23, 0x7}, {&(0x7f0000000340)="71b945737c159b720c7729a2c23adef6c897404ffaee5b26bea234a42f51f573d1ff8507e2b8e0db893c8057c047dafaa1385c52f5a806dcf5ea0ab8e8afafd3ab0fb53fe5f43c5b0f75034e91256cbc7d34ffd25b5f62a4f25b9611ad649a3e912ffa32e63aab2b1ca57e8bd412eb929a92df35222751affdcdabfb8a13ad590f8ceb653a627a54b56cec51bcb3e2464f6d4bf142e5f59a8bac035af8f71422", 0xa0, 0x3}, {&(0x7f0000000400)="bf01f5da2731c824195749e81d849a718ee6c678e94889d331a51f011b5a9713308e508aa8432f22078bb56941c49c246e267919ee34f7176779edfd23ff535421aa14d11674a8a2164a6bbca8", 0x4d, 0x57c}], 0x808c0, &(0x7f0000000500)=ANY=[@ANYBLOB='nodots,fowner=', @ANYRESDEC, @ANYBLOB="2c6f626a5f747970653d2c6f626a5f726f6c653d27cb2e5b2c636f6e746578743d726f6f742c7569643d", @ANYRESDEC=0xee00, @ANYBLOB=',smaclfshat=*+)@,\x00']) openat(r0, 0x0, 0x0, 0x20) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = fsopen(&(0x7f0000000640)='tmpfs\x00', 0x0) perf_event_open(&(0x7f0000000580)={0x4, 0x80, 0x44, 0x80, 0x8, 0x0, 0x0, 0x7, 0x180, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_config_ext={0x40, 0x2}, 0x108, 0x3, 0xfffffffb, 0x5, 0x4e3f, 0xfffff459, 0x2fd3, 0x0, 0x6, 0x0, 0x97ad}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x1) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', r2, &(0x7f00000001c0)='./file0\x00') renameat(r2, &(0x7f0000000140)='./file0/file0\x00', r2, &(0x7f0000000180)='./file1\x00') perf_event_open(&(0x7f0000000140)={0x6, 0x80, 0xff, 0x7f, 0x8, 0x8, 0x0, 0x5, 0x4410, 0x8, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffff80, 0x4, @perf_bp={&(0x7f0000000040), 0xa}, 0x1200, 0x81, 0x20, 0x1, 0x9, 0xf5, 0x7, 0x0, 0x8}, 0x0, 0x6, r2, 0x2) r3 = open(&(0x7f0000000000)='./file0\x00', 0x535081, 0x0) r4 = inotify_init1(0x0) dup2(r4, r3) [ 121.555491] loop3: detected capacity change from 0 to 5 [ 121.559583] ======================================================= [ 121.559583] WARNING: The mand mount option has been deprecated and [ 121.559583] and is ignored by this kernel. Remove the mand [ 121.559583] option from the mount to silence this warning. [ 121.559583] ======================================================= [ 121.849778] hrtimer: interrupt took 17222 ns [ 122.155490] loop3: detected capacity change from 0 to 5 14:40:29 executing program 5: mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0000500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$BTRFS_IOC_DEFRAG(0xffffffffffffffff, 0x50009402, 0x0) syz_io_uring_setup(0x4f0, &(0x7f0000000000)={0x0, 0x9709, 0x8, 0x1, 0x3e0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 14:40:29 executing program 3: r0 = syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x3f, 0x3, &(0x7f0000000480)=[{&(0x7f0000000300)="f4ed7efa4f5d1dbf13871d905fbbd6e0759a31107dad1332f0cdbf269bf113ed3d06d6", 0x23, 0x7}, {&(0x7f0000000340)="71b945737c159b720c7729a2c23adef6c897404ffaee5b26bea234a42f51f573d1ff8507e2b8e0db893c8057c047dafaa1385c52f5a806dcf5ea0ab8e8afafd3ab0fb53fe5f43c5b0f75034e91256cbc7d34ffd25b5f62a4f25b9611ad649a3e912ffa32e63aab2b1ca57e8bd412eb929a92df35222751affdcdabfb8a13ad590f8ceb653a627a54b56cec51bcb3e2464f6d4bf142e5f59a8bac035af8f71422", 0xa0, 0x3}, {&(0x7f0000000400)="bf01f5da2731c824195749e81d849a718ee6c678e94889d331a51f011b5a9713308e508aa8432f22078bb56941c49c246e267919ee34f7176779edfd23ff535421aa14d11674a8a2164a6bbca8", 0x4d, 0x57c}], 0x808c0, &(0x7f0000000500)=ANY=[@ANYBLOB='nodots,fowner=', @ANYRESDEC, @ANYBLOB="2c6f626a5f747970653d2c6f626a5f726f6c653d27cb2e5b2c636f6e746578743d726f6f742c7569643d", @ANYRESDEC=0xee00, @ANYBLOB=',smaclfshat=*+)@,\x00']) openat(r0, 0x0, 0x0, 0x20) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = fsopen(&(0x7f0000000640)='tmpfs\x00', 0x0) perf_event_open(&(0x7f0000000580)={0x4, 0x80, 0x44, 0x80, 0x8, 0x0, 0x0, 0x7, 0x180, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_config_ext={0x40, 0x2}, 0x108, 0x3, 0xfffffffb, 0x5, 0x4e3f, 0xfffff459, 0x2fd3, 0x0, 0x6, 0x0, 0x97ad}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x1) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', r2, &(0x7f00000001c0)='./file0\x00') renameat(r2, &(0x7f0000000140)='./file0/file0\x00', r2, &(0x7f0000000180)='./file1\x00') perf_event_open(&(0x7f0000000140)={0x6, 0x80, 0xff, 0x7f, 0x8, 0x8, 0x0, 0x5, 0x4410, 0x8, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffff80, 0x4, @perf_bp={&(0x7f0000000040), 0xa}, 0x1200, 0x81, 0x20, 0x1, 0x9, 0xf5, 0x7, 0x0, 0x8}, 0x0, 0x6, r2, 0x2) r3 = open(&(0x7f0000000000)='./file0\x00', 0x535081, 0x0) r4 = inotify_init1(0x0) dup2(r4, r3) [ 122.423366] loop3: detected capacity change from 0 to 5 14:40:29 executing program 5: mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0000500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$BTRFS_IOC_DEFRAG(0xffffffffffffffff, 0x50009402, 0x0) syz_io_uring_setup(0x4f0, &(0x7f0000000000)={0x0, 0x9709, 0x8, 0x1, 0x3e0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) [ 124.298113] loop7: detected capacity change from 0 to 8 [ 124.315255] loop7: detected capacity change from 0 to 8 VM DIAGNOSIS: 14:40:27 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=0000000000000000 RCX=0000000000000000 RDX=1ffffd40000e4367 RSI=ffff88801a607b60 RDI=ffffea0000721b38 RBP=ffffea0000721b00 RSP=ffff88801a607ad8 R8 =0000000000000001 R9 =0000000000000000 R10=000000000000000f R11=0000000000000001 R12=ffff88801a607b60 R13=ffff88806ce33c10 R14=dffffc0000000000 R15=ffffffff815f1b40 RIP=ffffffff817a962b RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f416e658540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f416eb0a130 CR3=000000003f07e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffff00ffffffffffffffffffffff00ff XMM02=4c4700362e322e325f4342494c470035 XMM03=00000000000000000000000000470035 XMM04=4342494c4700362e322e325f4342494c XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000007a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bda91 RDI=ffffffff8765c9a0 RBP=ffffffff8765c960 RSP=ffff88803ed3f690 R8 =0000000000000001 R9 =000000000000000a R10=000000000000007a R11=0000000000000001 R12=000000000000007a R13=ffffffff8765c960 R14=0000000000000010 R15=ffffffff823bda80 RIP=ffffffff823bdae9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f667083f700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff742fe0610 CR3=00000000205a4000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f66733b07c000007f66733b07c8 XMM02=00007f66733b07e000007f66733b07c0 XMM03=00007f66733b07c800007f66733b07c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000