syzkaller login: [ 42.736327] sshd (243) used greatest stack depth: 24624 bytes left Warning: Permanently added '[localhost]:48081' (ECDSA) to the list of known hosts. 2022/09/16 08:07:54 fuzzer started 2022/09/16 08:07:55 dialing manager at localhost:36559 [ 45.114546] cgroup: Unknown subsys name 'net' [ 45.253116] cgroup: Unknown subsys name 'rlimit' 2022/09/16 08:08:10 syscalls: 2215 2022/09/16 08:08:10 code coverage: enabled 2022/09/16 08:08:10 comparison tracing: enabled 2022/09/16 08:08:10 extra coverage: enabled 2022/09/16 08:08:10 setuid sandbox: enabled 2022/09/16 08:08:10 namespace sandbox: enabled 2022/09/16 08:08:10 Android sandbox: enabled 2022/09/16 08:08:10 fault injection: enabled 2022/09/16 08:08:10 leak checking: enabled 2022/09/16 08:08:10 net packet injection: enabled 2022/09/16 08:08:10 net device setup: enabled 2022/09/16 08:08:10 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/16 08:08:10 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/16 08:08:10 USB emulation: enabled 2022/09/16 08:08:10 hci packet injection: enabled 2022/09/16 08:08:10 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220915) 2022/09/16 08:08:10 802.15.4 emulation: enabled 2022/09/16 08:08:10 fetching corpus: 50, signal 28494/30320 (executing program) 2022/09/16 08:08:10 fetching corpus: 100, signal 46405/49733 (executing program) 2022/09/16 08:08:10 fetching corpus: 150, signal 53968/58743 (executing program) 2022/09/16 08:08:10 fetching corpus: 200, signal 64453/70512 (executing program) 2022/09/16 08:08:11 fetching corpus: 250, signal 69415/76808 (executing program) 2022/09/16 08:08:11 fetching corpus: 300, signal 73820/82510 (executing program) 2022/09/16 08:08:11 fetching corpus: 350, signal 80095/89922 (executing program) 2022/09/16 08:08:11 fetching corpus: 400, signal 86020/96848 (executing program) 2022/09/16 08:08:11 fetching corpus: 450, signal 89077/101048 (executing program) 2022/09/16 08:08:11 fetching corpus: 500, signal 93420/106381 (executing program) 2022/09/16 08:08:12 fetching corpus: 550, signal 98042/111930 (executing program) 2022/09/16 08:08:12 fetching corpus: 600, signal 100151/115104 (executing program) 2022/09/16 08:08:12 fetching corpus: 650, signal 102753/118721 (executing program) 2022/09/16 08:08:12 fetching corpus: 700, signal 105605/122517 (executing program) 2022/09/16 08:08:12 fetching corpus: 750, signal 109359/127010 (executing program) 2022/09/16 08:08:12 fetching corpus: 800, signal 112208/130689 (executing program) 2022/09/16 08:08:13 fetching corpus: 850, signal 114579/133940 (executing program) 2022/09/16 08:08:13 fetching corpus: 900, signal 116932/137144 (executing program) 2022/09/16 08:08:13 fetching corpus: 950, signal 119680/140619 (executing program) 2022/09/16 08:08:13 fetching corpus: 1000, signal 123377/144862 (executing program) 2022/09/16 08:08:13 fetching corpus: 1050, signal 125300/147543 (executing program) 2022/09/16 08:08:13 fetching corpus: 1100, signal 127657/150522 (executing program) 2022/09/16 08:08:14 fetching corpus: 1150, signal 130199/153734 (executing program) 2022/09/16 08:08:14 fetching corpus: 1200, signal 131344/155708 (executing program) 2022/09/16 08:08:14 fetching corpus: 1250, signal 133870/158715 (executing program) 2022/09/16 08:08:14 fetching corpus: 1300, signal 135426/160972 (executing program) 2022/09/16 08:08:14 fetching corpus: 1350, signal 138293/164206 (executing program) 2022/09/16 08:08:14 fetching corpus: 1400, signal 140074/166567 (executing program) 2022/09/16 08:08:15 fetching corpus: 1450, signal 141593/168708 (executing program) 2022/09/16 08:08:15 fetching corpus: 1500, signal 142214/170194 (executing program) 2022/09/16 08:08:15 fetching corpus: 1550, signal 144082/172617 (executing program) 2022/09/16 08:08:15 fetching corpus: 1600, signal 145979/174932 (executing program) 2022/09/16 08:08:15 fetching corpus: 1650, signal 147684/177138 (executing program) 2022/09/16 08:08:15 fetching corpus: 1700, signal 149224/179196 (executing program) 2022/09/16 08:08:15 fetching corpus: 1750, signal 150688/181195 (executing program) 2022/09/16 08:08:16 fetching corpus: 1800, signal 152185/183196 (executing program) 2022/09/16 08:08:16 fetching corpus: 1850, signal 154615/185958 (executing program) 2022/09/16 08:08:16 fetching corpus: 1900, signal 155974/187790 (executing program) 2022/09/16 08:08:16 fetching corpus: 1950, signal 157722/189869 (executing program) 2022/09/16 08:08:16 fetching corpus: 2000, signal 158731/191386 (executing program) 2022/09/16 08:08:16 fetching corpus: 2050, signal 159949/193041 (executing program) 2022/09/16 08:08:17 fetching corpus: 2100, signal 161121/194687 (executing program) 2022/09/16 08:08:17 fetching corpus: 2150, signal 162720/196508 (executing program) 2022/09/16 08:08:17 fetching corpus: 2200, signal 163934/198090 (executing program) 2022/09/16 08:08:17 fetching corpus: 2250, signal 164980/199625 (executing program) 2022/09/16 08:08:17 fetching corpus: 2300, signal 166836/201632 (executing program) 2022/09/16 08:08:18 fetching corpus: 2350, signal 168180/203246 (executing program) 2022/09/16 08:08:18 fetching corpus: 2400, signal 169002/204510 (executing program) 2022/09/16 08:08:18 fetching corpus: 2450, signal 169975/205887 (executing program) 2022/09/16 08:08:18 fetching corpus: 2500, signal 170745/207136 (executing program) 2022/09/16 08:08:18 fetching corpus: 2550, signal 171646/208429 (executing program) 2022/09/16 08:08:18 fetching corpus: 2600, signal 173789/210455 (executing program) 2022/09/16 08:08:19 fetching corpus: 2650, signal 175502/212261 (executing program) 2022/09/16 08:08:19 fetching corpus: 2700, signal 176476/213531 (executing program) 2022/09/16 08:08:19 fetching corpus: 2750, signal 178007/215210 (executing program) 2022/09/16 08:08:19 fetching corpus: 2800, signal 179504/216689 (executing program) 2022/09/16 08:08:19 fetching corpus: 2850, signal 180720/218030 (executing program) 2022/09/16 08:08:20 fetching corpus: 2900, signal 181410/219090 (executing program) 2022/09/16 08:08:20 fetching corpus: 2950, signal 182339/220302 (executing program) 2022/09/16 08:08:20 fetching corpus: 3000, signal 183047/221370 (executing program) 2022/09/16 08:08:20 fetching corpus: 3050, signal 183810/222384 (executing program) 2022/09/16 08:08:20 fetching corpus: 3100, signal 185012/223699 (executing program) 2022/09/16 08:08:21 fetching corpus: 3150, signal 186075/224883 (executing program) 2022/09/16 08:08:21 fetching corpus: 3200, signal 187312/226119 (executing program) 2022/09/16 08:08:21 fetching corpus: 3250, signal 187960/227073 (executing program) 2022/09/16 08:08:21 fetching corpus: 3300, signal 189487/228486 (executing program) 2022/09/16 08:08:21 fetching corpus: 3350, signal 190269/229446 (executing program) 2022/09/16 08:08:21 fetching corpus: 3400, signal 191196/230486 (executing program) 2022/09/16 08:08:21 fetching corpus: 3450, signal 192224/231592 (executing program) 2022/09/16 08:08:22 fetching corpus: 3500, signal 192836/232453 (executing program) 2022/09/16 08:08:22 fetching corpus: 3550, signal 193780/233449 (executing program) 2022/09/16 08:08:22 fetching corpus: 3600, signal 194623/234392 (executing program) 2022/09/16 08:08:22 fetching corpus: 3650, signal 195677/235449 (executing program) 2022/09/16 08:08:22 fetching corpus: 3700, signal 196230/236259 (executing program) 2022/09/16 08:08:22 fetching corpus: 3750, signal 196734/237018 (executing program) 2022/09/16 08:08:22 fetching corpus: 3800, signal 197846/238062 (executing program) 2022/09/16 08:08:23 fetching corpus: 3850, signal 198527/238839 (executing program) 2022/09/16 08:08:23 fetching corpus: 3900, signal 199281/239718 (executing program) 2022/09/16 08:08:23 fetching corpus: 3950, signal 199846/240483 (executing program) 2022/09/16 08:08:23 fetching corpus: 4000, signal 201249/241511 (executing program) 2022/09/16 08:08:23 fetching corpus: 4050, signal 202026/242351 (executing program) 2022/09/16 08:08:23 fetching corpus: 4100, signal 203241/243288 (executing program) 2022/09/16 08:08:24 fetching corpus: 4150, signal 203855/243978 (executing program) 2022/09/16 08:08:24 fetching corpus: 4200, signal 204888/244909 (executing program) 2022/09/16 08:08:24 fetching corpus: 4250, signal 205595/245615 (executing program) 2022/09/16 08:08:24 fetching corpus: 4300, signal 206841/246552 (executing program) 2022/09/16 08:08:24 fetching corpus: 4350, signal 207361/247167 (executing program) 2022/09/16 08:08:25 fetching corpus: 4400, signal 208157/247897 (executing program) 2022/09/16 08:08:25 fetching corpus: 4450, signal 209261/248706 (executing program) 2022/09/16 08:08:25 fetching corpus: 4500, signal 209866/249547 (executing program) 2022/09/16 08:08:25 fetching corpus: 4550, signal 210384/250180 (executing program) 2022/09/16 08:08:25 fetching corpus: 4600, signal 211007/250850 (executing program) 2022/09/16 08:08:25 fetching corpus: 4650, signal 211766/251535 (executing program) 2022/09/16 08:08:26 fetching corpus: 4700, signal 212257/252110 (executing program) 2022/09/16 08:08:26 fetching corpus: 4750, signal 212810/252683 (executing program) 2022/09/16 08:08:26 fetching corpus: 4800, signal 213605/253400 (executing program) 2022/09/16 08:08:26 fetching corpus: 4850, signal 214248/253979 (executing program) 2022/09/16 08:08:26 fetching corpus: 4900, signal 214915/254548 (executing program) 2022/09/16 08:08:26 fetching corpus: 4950, signal 215740/255163 (executing program) 2022/09/16 08:08:27 fetching corpus: 5000, signal 216344/255719 (executing program) 2022/09/16 08:08:27 fetching corpus: 5050, signal 216852/256277 (executing program) 2022/09/16 08:08:27 fetching corpus: 5100, signal 217680/256924 (executing program) 2022/09/16 08:08:27 fetching corpus: 5150, signal 218300/257441 (executing program) 2022/09/16 08:08:27 fetching corpus: 5200, signal 219711/258212 (executing program) 2022/09/16 08:08:27 fetching corpus: 5250, signal 220696/258821 (executing program) 2022/09/16 08:08:28 fetching corpus: 5300, signal 221334/259322 (executing program) 2022/09/16 08:08:28 fetching corpus: 5350, signal 221926/259748 (executing program) 2022/09/16 08:08:28 fetching corpus: 5400, signal 222369/260150 (executing program) 2022/09/16 08:08:28 fetching corpus: 5450, signal 222719/260534 (executing program) 2022/09/16 08:08:28 fetching corpus: 5500, signal 223110/260943 (executing program) 2022/09/16 08:08:28 fetching corpus: 5550, signal 223922/261430 (executing program) 2022/09/16 08:08:29 fetching corpus: 5600, signal 224679/261891 (executing program) 2022/09/16 08:08:29 fetching corpus: 5650, signal 225307/262296 (executing program) 2022/09/16 08:08:29 fetching corpus: 5700, signal 226075/262703 (executing program) 2022/09/16 08:08:29 fetching corpus: 5750, signal 226489/263086 (executing program) 2022/09/16 08:08:29 fetching corpus: 5800, signal 227111/263499 (executing program) 2022/09/16 08:08:30 fetching corpus: 5850, signal 227573/263884 (executing program) 2022/09/16 08:08:30 fetching corpus: 5900, signal 227913/264232 (executing program) 2022/09/16 08:08:30 fetching corpus: 5950, signal 228906/264619 (executing program) 2022/09/16 08:08:30 fetching corpus: 6000, signal 229493/264983 (executing program) 2022/09/16 08:08:30 fetching corpus: 6050, signal 230248/265359 (executing program) 2022/09/16 08:08:30 fetching corpus: 6100, signal 230818/265684 (executing program) 2022/09/16 08:08:31 fetching corpus: 6150, signal 231265/266007 (executing program) 2022/09/16 08:08:31 fetching corpus: 6200, signal 232194/266465 (executing program) 2022/09/16 08:08:31 fetching corpus: 6250, signal 232668/266825 (executing program) 2022/09/16 08:08:31 fetching corpus: 6300, signal 233500/267146 (executing program) 2022/09/16 08:08:31 fetching corpus: 6350, signal 233892/267421 (executing program) 2022/09/16 08:08:31 fetching corpus: 6400, signal 234291/267696 (executing program) 2022/09/16 08:08:32 fetching corpus: 6450, signal 234633/267974 (executing program) 2022/09/16 08:08:32 fetching corpus: 6500, signal 235255/268230 (executing program) 2022/09/16 08:08:32 fetching corpus: 6550, signal 235821/268404 (executing program) 2022/09/16 08:08:32 fetching corpus: 6600, signal 236350/268405 (executing program) 2022/09/16 08:08:32 fetching corpus: 6650, signal 236801/268410 (executing program) 2022/09/16 08:08:32 fetching corpus: 6700, signal 237147/268424 (executing program) 2022/09/16 08:08:33 fetching corpus: 6750, signal 237525/268438 (executing program) 2022/09/16 08:08:33 fetching corpus: 6800, signal 237781/268438 (executing program) 2022/09/16 08:08:33 fetching corpus: 6850, signal 238262/268447 (executing program) 2022/09/16 08:08:33 fetching corpus: 6900, signal 238732/268451 (executing program) 2022/09/16 08:08:33 fetching corpus: 6950, signal 239250/268509 (executing program) 2022/09/16 08:08:34 fetching corpus: 7000, signal 239821/268587 (executing program) 2022/09/16 08:08:34 fetching corpus: 7050, signal 240515/268589 (executing program) 2022/09/16 08:08:34 fetching corpus: 7100, signal 240819/268650 (executing program) 2022/09/16 08:08:34 fetching corpus: 7150, signal 241263/268650 (executing program) 2022/09/16 08:08:34 fetching corpus: 7200, signal 241791/268735 (executing program) 2022/09/16 08:08:34 fetching corpus: 7250, signal 242432/268738 (executing program) 2022/09/16 08:08:35 fetching corpus: 7300, signal 242926/268766 (executing program) 2022/09/16 08:08:35 fetching corpus: 7350, signal 244224/268805 (executing program) 2022/09/16 08:08:35 fetching corpus: 7400, signal 244594/268823 (executing program) 2022/09/16 08:08:35 fetching corpus: 7450, signal 245278/268838 (executing program) 2022/09/16 08:08:35 fetching corpus: 7500, signal 245751/268844 (executing program) 2022/09/16 08:08:35 fetching corpus: 7550, signal 246200/268852 (executing program) 2022/09/16 08:08:36 fetching corpus: 7600, signal 247128/268920 (executing program) 2022/09/16 08:08:36 fetching corpus: 7650, signal 247719/268920 (executing program) 2022/09/16 08:08:36 fetching corpus: 7700, signal 248066/268929 (executing program) 2022/09/16 08:08:36 fetching corpus: 7750, signal 248562/268938 (executing program) 2022/09/16 08:08:36 fetching corpus: 7765, signal 248875/268954 (executing program) 2022/09/16 08:08:36 fetching corpus: 7765, signal 248875/268954 (executing program) 2022/09/16 08:08:39 starting 8 fuzzer processes 08:08:39 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x2, 0xfd, 0x5, 0x4, 0x0, 0x20000000000000, 0x60200, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000000), 0xd}, 0x81, 0x100000001, 0x20, 0x0, 0x8, 0x20, 0xa84, 0x0, 0x4, 0x0, 0x3}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x2) r1 = fcntl$getown(0xffffffffffffffff, 0x9) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x4b, 0x7f, 0x20, 0x80, 0x0, 0x2, 0x6674, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffff8, 0x4, @perf_config_ext={0x3}, 0x1000, 0xa74, 0x2, 0x5, 0x3, 0x8001, 0x3, 0x0, 0x7, 0x0, 0x5}, r1, 0x10, r0, 0x8) ioctl$TIOCGDEV(0xffffffffffffffff, 0x80045432, &(0x7f0000000140)) ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000180)) r2 = fsmount(0xffffffffffffffff, 0x0, 0xfc) ioctl$TUNSETSNDBUF(r2, 0x400454d4, &(0x7f00000001c0)=0x1f) ioctl$TIOCSBRK(r2, 0x5427) r3 = accept$inet(r2, &(0x7f0000000200)={0x2, 0x0, @private}, &(0x7f0000000240)=0x10) r4 = socket(0x27, 0x6, 0x3) r5 = dup2(r3, r4) r6 = getpgrp(r1) r7 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000300), 0x4a003, 0x0) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0xff, 0x0, 0x0, 0x1, 0x0, 0x20, 0x20000, 0xe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_config_ext={0x3, 0x5}, 0x890, 0x4, 0x20, 0x0, 0x1, 0x9, 0x9, 0x0, 0xff, 0x0, 0x9}, r6, 0xe, r7, 0x8) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x4, 0x80, 0xff, 0x5, 0x9, 0x7, 0x0, 0x40, 0x3810, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x7, 0x1, @perf_config_ext={0x80, 0x3}, 0x4200c, 0x7, 0x80, 0x3, 0x5, 0x4, 0x7, 0x0, 0x8338, 0x0, 0x93}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x2) ioctl$GIO_FONTX(r7, 0x4b6b, &(0x7f00000007c0)={0xf1, 0x5, &(0x7f00000003c0)}) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) getsockopt$IP_VS_SO_GET_INFO(r5, 0x0, 0x481, &(0x7f0000000800), &(0x7f0000000840)=0xc) ioctl$HIDIOCGCOLLECTIONINFO(r5, 0xc0104811, &(0x7f0000000880)={0x8, 0x10000, 0x80, 0x8000}) 08:08:39 executing program 1: prctl$PR_CAP_AMBIENT(0x2f, 0x2, 0x19) prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0xa) prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0x0) prctl$PR_CAP_AMBIENT(0x2f, 0x1, 0x12) prctl$PR_CAP_AMBIENT(0x2f, 0x1, 0x23) prctl$PR_CAP_AMBIENT(0x2f, 0x1, 0xc) prctl$PR_CAP_AMBIENT(0x2f, 0x2, 0x23) prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0x11) prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0xe) prctl$PR_CAP_AMBIENT(0x2f, 0x2, 0x1e) prctl$PR_CAP_AMBIENT(0x2f, 0x1, 0x21) prctl$PR_CAP_AMBIENT(0x2f, 0x4, 0x27) prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0x5) prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0x1) prctl$PR_CAP_AMBIENT(0x2f, 0x1, 0x0) prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0x24) prctl$PR_CAP_AMBIENT(0x2f, 0x1, 0x11) prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0x1e) prctl$PR_CAP_AMBIENT(0x2f, 0x3, 0x21) prctl$PR_CAP_AMBIENT(0x2f, 0x4, 0x1) 08:08:39 executing program 7: rt_tgsigqueueinfo(0xffffffffffffffff, 0x0, 0x1f, &(0x7f0000000000)={0x2d, 0xd1, 0x9}) r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.pending_reads\x00', 0x141000, 0x44) r1 = syz_open_dev$usbmon(&(0x7f00000000c0), 0x7, 0x240402) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1, {0x8}}, './file0\x00'}) ioctl$MON_IOCX_GETX(r2, 0x4018920a, &(0x7f0000000280)={&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000180)=""/235, 0xeb}) ioctl$MON_IOCQ_URB_LEN(r1, 0x9201) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x3c, 0x0, &(0x7f00000002c0)=[@acquire={0x40046305, 0x2}, @increfs={0x40046304, 0x3}, @enter_looper, @exit_looper, @acquire_done={0x40106309, 0x3}, @request_death={0x400c630e, 0x1}], 0x9b, 0x0, &(0x7f0000000300)="12885c4287de21c9dbc1a4326086c037b643ede574270045abab36ee1f3f879e4a60f267837d8771c51ef1d801f2a054dba5e650b3aa8a150f8c720992d44030f1e1a1fb18a29e272e979eb48cfd3ef78b989155bcf9f3266d5219750a01fe82b763499bf71a1e9aa44e09a0063ab0ea2ab411162318b9ae5ade5e334b97444d829ba394a0b750a4b5553ca8b803068020ef9a07318c4c6b1cb2fe"}) r3 = openat2(r0, &(0x7f0000000400)='./file1\x00', &(0x7f0000000440)={0x40000, 0xc2, 0x2}, 0x18) ioctl$MON_IOCX_GETX(r3, 0x4018920a, &(0x7f00000005c0)={&(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f00000004c0)=""/201, 0xc9}) sendfile(r0, r0, &(0x7f0000000600)=0x6, 0x8) ioctl$MON_IOCX_GETX(r0, 0x4018920a, &(0x7f0000000780)={&(0x7f0000000640), &(0x7f0000000680)=""/220, 0xdc}) r4 = gettid() waitid(0x2, r4, &(0x7f00000007c0), 0x2, &(0x7f0000000840)) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000900), 0x8000, 0x0) close(r5) ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000000940)=0x0) r7 = getpgid(r4) rt_tgsigqueueinfo(r6, r7, 0xe, &(0x7f0000000980)={0x1a, 0x55a2e5a7}) r8 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000a00), 0x2002, 0x0) fcntl$getown(r8, 0x9) 08:08:39 executing program 2: sendmsg$NFNL_MSG_ACCT_DEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x3, 0x7, 0x3, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x3}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x1ff}, @NFACCT_QUOTA={0xc}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x4010) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x89b00) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4) r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000280), r0) sendmsg$SMC_PNETID_ADD(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x7c, r1, 0x4, 0x70bd2a, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'vcan0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x7c}, 0x1, 0x0, 0x0, 0x50}, 0x4000000) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000400), r0) sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000500)={&(0x7f0000000440)={0xbc, r2, 0x200, 0x70bd2d, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6_vti0\x00'}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x81}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_STATE={0x8}]}, @IPVS_CMD_ATTR_DAEMON={0x50, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @empty}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bond0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x17d6}, @IPVS_CMD_ATTR_SERVICE={0x4}]}, 0xbc}, 0x1, 0x0, 0x0, 0x4000}, 0x40810) sendmsg$SMC_PNETID_FLUSH(r0, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x30, r1, 0x10, 0x70bd26, 0x25dfdbff, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'rose0\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x955d41a8b00226f4}, 0x44010) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_ABORT_SCAN(r0, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x1c, r3, 0x2, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20004800}, 0x40000) fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000007c0)='ip6_vti0\x00', 0x0, r0) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f00000008c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x8f7f2127da793023}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x1c, 0x0, 0x402, 0x70bd29, 0x25dfdbfe, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8044}, 0x4004080) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000900), r0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000940)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r5, &(0x7f0000000a40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x10000040}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x1c, r4, 0x2, 0x70bd2b, 0x25dfdbfc, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x8b9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000004}, 0x4000) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000ac0), r0) sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000000c80)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000c40)={&(0x7f0000000b00)={0x138, r6, 0x2, 0x70bd2c, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x50, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x4}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'xfrm0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x100}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}, @IPVS_CMD_ATTR_DAEMON={0x6c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_batadv\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip_vti0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private1={0xfc, 0x1, '\x00', 0x1}}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x4}, @IPVS_CMD_ATTR_DEST={0x50, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x5}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x1}, @IPVS_DEST_ATTR_WEIGHT={0x8}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xfffffffa}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x2}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x6d}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e21}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x804}, 0x40) r7 = dup2(r5, r5) sendmsg$NL80211_CMD_FRAME(r7, &(0x7f0000000dc0)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d00)={0x44, r3, 0x10, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xe, 0xcd, [0x3, 0x6, 0x3, 0x5, 0x7]}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x8]}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x971}]]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x1) sendmsg$TIPC_CMD_GET_NODES(r5, &(0x7f0000000ec0)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x1c, 0x0, 0x200, 0x70bd2c, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0xc040}, 0x4010) [ 88.896527] audit: type=1400 audit(1663315719.179:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 08:08:39 executing program 3: r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x4, 0x117080) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000040)={0xc6, 0x1000, 0x5, 0x1, 0x3, "35ddae6a9a46a62a026b3594151e4ef7dfd5d6"}) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r0) sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, r1, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) write(r0, &(0x7f00000001c0)='b', 0x1) syz_genetlink_get_family_id$devlink(&(0x7f0000000200), r0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000240)={{0x0, 0x134, 0x8, 0x2, 0xf24, 0x6, 0x89bf, 0x5, 0x5e7306f8, 0x2, 0xffffffff, 0x5, 0xec, 0x3f, 0xfffffffffffffffb}, 0x10, [0x0, 0x0]}) ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f00000002c0)={0x0, "dd1bc0affb8a331ae824d8f300b79d4f"}) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000012c0)=0x40000) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000001340), 0x10000, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000001300), r2) ioctl$EXT4_IOC_CHECKPOINT(r2, 0x4004662b, &(0x7f0000001380)=0x6) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000001480)={0x0, @multicast2, @initdev}, &(0x7f00000014c0)=0xc) ioctl$TUNSETIFINDEX(r2, 0x400454da, &(0x7f0000001500)=r3) getsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000015c0)={@rand_addr, 0x0}, &(0x7f0000001600)=0x14) setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, &(0x7f0000001640)={@private1={0xfc, 0x1, '\x00', 0x1}, r4}, 0x14) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001680), 0xfe1c92f2581d941d, 0x0) ioctl$EXT4_IOC_MIGRATE(r5, 0x6609) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0xc0406618, &(0x7f00000016c0)={@desc={0x1, 0x0, @desc1}}) sendmsg$nl_netfilter(r2, &(0x7f00000017c0)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001780)={&(0x7f0000001740)={0x18, 0x6, 0x2, 0x401, 0x70bd2c, 0x25dfdbfd, {0x2, 0x0, 0xa}, [@typed={0x4, 0x38}]}, 0x18}}, 0x20000044) 08:08:39 executing program 4: ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000000)) r0 = open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x92830f903140b715) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000080)={{}, 0x8, 0x0, 0x10000}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) renameat2(r0, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000140)='./file0\x00', 0x2) setsockopt$sock_int(r0, 0x1, 0xc, &(0x7f0000000180)=0x7, 0x4) r2 = syz_open_dev$loop(&(0x7f00000001c0), 0xff, 0x191000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2, {r0}}, './file0\x00'}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000280)={0x1, &(0x7f0000000240)=[{0x5, 0x0, 0x81, 0x8}]}, 0x10) r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000002c0), 0x8c001, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000000300)={{0x1, 0x1, 0x18, r4, {0x400}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000340)={{0x1, 0x1, 0x18, r4, {0x2}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r4, 0xc018937a, &(0x7f0000000380)={{0x1, 0x1, 0x18, r2, {0x4}}, './file0\x00'}) fsconfig$FSCONFIG_SET_FD(r7, 0x5, &(0x7f00000003c0), 0x0, r4) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r7, 0xc018937b, &(0x7f0000000400)={{0x1, 0x1, 0x18, r6, {0xffffffffffffffff}}, './file0\x00'}) recvfrom(r8, &(0x7f0000000440), 0x0, 0x2000, &(0x7f0000000480)=@pppol2tpv3={0x18, 0x1, {0x0, r5, {0x2, 0x4e22, @remote}, 0x0, 0x0, 0x1, 0x3}}, 0x80) r9 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_netdev_private(r9, 0x89f7, &(0x7f0000000500)="84c0b906e8787f5a987bbbcc066ef0412d0ac22f31a2069cdc239a7c8475b07dac331376a2d2a7e1f9c3") mount$bind(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x8000, 0x0) recvmmsg(r7, &(0x7f0000000d40)=[{{&(0x7f0000000600)=@nfc, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000680)=""/60, 0x3c}, {&(0x7f00000006c0)=""/85, 0x55}, {&(0x7f0000000740)=""/38, 0x26}, {&(0x7f0000000780)=""/161, 0xa1}, {&(0x7f0000000840)=""/105, 0x69}, {&(0x7f00000008c0)=""/255, 0xff}, {&(0x7f00000009c0)=""/142, 0x8e}], 0x7, &(0x7f0000000b00)=""/217, 0xd9}, 0x12}, {{&(0x7f0000000c00)=@ax25={{0x3, @null}, [@netrom, @rose, @netrom, @netrom, @default, @null, @rose, @bcast]}, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000c80)=""/58, 0x3a}], 0x1, &(0x7f0000000d00)}, 0x3}], 0x2, 0x40000120, &(0x7f0000000dc0)) 08:08:39 executing program 5: ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00}}, './file0\x00'}) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000080)=0x0) sendmsg$AUDIT_SET(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000124}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, 0x3e9, 0x400, 0x70bd28, 0x25dfdbfe, {0x18, 0x1, 0x1, r2, 0x0, 0x9, 0x4, 0x2, 0x0, 0x1}, ["", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x91) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000180)=[r0], 0x1) fsetxattr$security_capability(r0, &(0x7f00000001c0), &(0x7f0000000200)=@v3={0x3000000, [{0x1ff, 0x29}, {0xffff, 0x1000}], r1}, 0x18, 0x1) sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x50, 0x0, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private0}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x6040) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl802154(&(0x7f00000003c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r3, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x4c, r4, 0x31c, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x9}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x4}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24040080}, 0x40840) sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x60000104}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x34, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0x42}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x20040004}, 0x4004005) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000640)={'wpan3\x00', 0x0}) r7 = openat(0xffffffffffffffff, &(0x7f0000000680)='./file0/../file0\x00', 0x40000, 0x102) sendmsg$NL80211_CMD_GET_KEY(r0, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x78, 0x0, 0x0, 0x70bd25, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x7580, 0x43}}}}, [@NL80211_ATTR_KEY_SEQ={0x12, 0xa, "238c4126a9702d1c019d8ecaa79e"}, @NL80211_ATTR_KEY_SEQ={0xf, 0xa, "8c2c392f73aca47bc9dfd2"}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "948022503a6e51f7525808a0bc"}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x2}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x78}, 0x1, 0x0, 0x0, 0x1}, 0x20000014) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000800)={'wpan1\x00'}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000840)={'wpan3\x00'}) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000008c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_LEAVE_OCB(r7, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x14, r8, 0x1, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x14) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000a00)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x54, r4, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000002}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0xfc9f6e314ebd3991}, 0x8080) 08:08:39 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x200800, 0x0) ioctl$int_out(r0, 0x5464, &(0x7f0000000040)) ioctl$TIOCGPTPEER(r0, 0x5441, 0x6) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.time_recursive\x00', 0x0, 0x0) sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f00000001c0)={0x0, @aes256, 0x0, @desc3}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000240)=0x2) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r3, 0xc0189374, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) poll(&(0x7f00000002c0)=[{0xffffffffffffffff, 0x3080}, {r4, 0x3286}], 0x2, 0x7) read$snapshot(r4, &(0x7f0000000300)=""/145, 0x91) r5 = openat$hpet(0xffffffffffffff9c, &(0x7f00000003c0), 0xa366c31e0880e23c, 0x0) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), r4) sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r5, &(0x7f0000000fc0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x86f6ca62c042d8b7}, 0xc, &(0x7f0000000f80)={&(0x7f0000000480)={0xaf4, r6, 0x400, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_PMSR_ATTR_PEERS={0xa4, 0x5, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x34, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x400}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x15}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x15cc}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}]}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}]}, @NL80211_PMSR_ATTR_PEERS={0xa30, 0x5, 0x0, 0x1, [{0x6c8, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_REQ={0x8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x248, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x130, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x80}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x12}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x401}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xff}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x78, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xf33d}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xff}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x200}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x90, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x15}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x1b4, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0xb0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xe1}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xd3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5500}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xff5c}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x14}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x401}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xfc, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x81}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4155}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x64}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33e}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x1f0, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x74, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x13}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xf9}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xa0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xd8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x13}]}, @NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xcba}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x18}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x12}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x60}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0xa8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xffc2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x50, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x20}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xba}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}]}]}]}]}, {0x364, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x11}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0xdc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xb4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_REQ={0x22c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xe4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xf}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1d}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3f}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x80}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfff}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x13}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xfc, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x12}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x12}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xff}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x19}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x2c, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5f1f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x120}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x7}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x4}]}, 0xaf4}, 0x1, 0x0, 0x0, 0x800}, 0x4004000) sendmsg$NL80211_CMD_SET_BEACON(r3, &(0x7f0000001500)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000014c0)={&(0x7f0000001040)={0x444, r6, 0x2, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_BEACON_TAIL={0x22, 0xf, [@supported_rates={0x1, 0x8, [{0x1}, {0xb}, {0x36}, {0x24}, {0x60}, {0x48}, {0x48}, {0x12}]}, @link_id={0x65, 0x12, {@from_mac, @device_a, @device_b}}]}, @NL80211_ATTR_BEACON_HEAD={0x2f9, 0xe, {@with_ht={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @device_b, @broadcast, @from_mac=@broadcast, {0x0, 0x1}}, @ver_80211n={0x0, 0x3, 0x3, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1}}, 0x5, @default, 0x8, @void, @val={0x1, 0x8, [{0x9}, {0x71}, {0x6}, {0xb, 0x1}, {0x18, 0x1}, {0x36}, {0x24, 0x1}, {0xc, 0x1}]}, @val={0x3, 0x1, 0x4}, @val={0x4, 0x6, {0x8, 0x2, 0x100}}, @val={0x6, 0x2, 0x2}, @val={0x5, 0x88, {0x20, 0x3b, 0x3, "9c8abf44144e85e1145e331712b0e86df8fa7b3538785d204990ff8284607c6b55f4fcdd406caf982ab3a872386ef7c9b0a66521039209bf34e16180ea52e631a307425ef852bbae4e3dab78bd94eb86f29a6bda56de18dd5abbac0dae208ad90390a25fe20a0778e30380f282ed300c71b48db6e9e0aa3a55dc6a59355f46ef868f13fd8c"}}, @void, @void, @val={0x3c, 0x4, {0x0, 0x1, 0x9, 0x1}}, @val={0x2d, 0x1a, {0x40, 0x3, 0x5, 0x0, {0x9, 0x1, 0x0, 0x248, 0x0, 0x0, 0x0, 0x2, 0x1}, 0x300, 0x7fff, 0xed}}, @void, @void, @void, [{0xdd, 0x86, "baef9a3d632b81f0571ba9a98bdeef8250f4c0827b741bd932137054ac115d84d777967f9961844dd8555db078c0c43aa9fefbd357c7fb9e1ed33f546d7202c4604fcfb8398256bb269c86a6d07f5a9a7440cc30c33e08fc42e68c4717f8a0ef530a27d4ee3d491d5fff8d9c4d35509b809b4896d0adfedce7018f2590e24a648d6a0444f2b4"}, {0xdd, 0xa8, "523eb66b35811b24f9289652f2bb96ffb5f973815409f91126c12eec922497a17d3ebdb2aa83607007a5c7ab781185e0afeb9d31e528a0732530b5d45be804d509c8aed52f025bf97df2a720b6101e10650fa9830fcd7f05b4b79e912118ba85d534597077fcb512b3b3896666ef5655031b1bc721f58272defa2a500502d753728b06eccd9d9c5b548c81a3dea2fcc704e0de5b3b1cbea7a095069b07bc8e4d9fffbc86216c7d37"}, {0xdd, 0x9b, "40dd08a64e5a7a288652afb97aa6c9543fc2dae17087af86f4f54ace850fef619be3f6bdf3bfc1e7674ccafed9f66169ba83821d4bc7c8a0a54a0fb2a03b7820ce6a728196bc20d62c4db8d5fbfd079d8bcc8a3f499799bad9395582d38434b5eb57d63d9f18117298ccb66c6d0b2acb9e9450b4e8ba6348b02ccdc68dfdadb4c9576d7a75b95a99785eb73280fbe1a8574dd8f48fe828cfa0b2d7"}, {0xdd, 0x37, "32a1696111d2e480431e8a3f8837bb406c793734b39c0707d8e340ebe0ea5c9c0202babeb7a0e29eecf22ac80c913493594011f8d2a832"}]}}, @NL80211_ATTR_BEACON_TAIL={0xf, 0xf, [@dsss={0x3, 0x1, 0xb2}, @ssid={0x0, 0x6, @default_ibss_ssid}]}, @NL80211_ATTR_BEACON_TAIL={0xfe, 0xf, [@rann={0x7e, 0x15, {{0x0, 0x46}, 0x7, 0x80, @device_b, 0x0, 0x0, 0x5}}, @mesh_config={0x71, 0x7, {0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, 0x8}}, @cf={0x4, 0x6, {0xda, 0x8, 0x0, 0x101}}, @preq={0x82, 0x36, @ext={{0x0, 0x0, 0x1}, 0x9, 0x80, 0x80000000, @device_a, 0x3, @broadcast, 0x1ff, 0x2, 0x2, [{{0x0, 0x0, 0x1}, @device_a, 0x9}, {{0x0, 0x0, 0x1}, @device_a, 0x1}]}}, @gcr_ga={0xbd, 0x6}, @prep={0x83, 0x25, @ext={{}, 0x5, 0x4, @device_b, 0x1ff, @device_b, 0xb6f1, 0x194, @device_b, 0x800}}, @random_vendor={0xdd, 0x61, "ef95de56581e215b9e9cad287d99d95a04b8237db3571d97f179ec4539b434cde797336fd15b3a0d6648de914e3fd43b71e5f3820d10d0142167e4aa7c64c8f3a8c65bfb1ba3f8149306ff579aa8a002e7bae0f19a19052bd30ef09fe5b14eaf42"}, @mesh_chsw={0x76, 0x6, {0x80, 0x3, 0x12}}]}]}, 0x444}, 0x1, 0x0, 0x0, 0x20004045}, 0x24044004) r7 = openat(r3, &(0x7f0000001540)='./file0\x00', 0x200, 0x88) sendmsg$TIPC_CMD_SET_LINK_PRI(r7, &(0x7f0000001680)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001640)={&(0x7f00000015c0)={0x68, 0x0, 0x400, 0x70bd29, 0x25dfdbfb, {{}, {}, {0x4c, 0x18, {0x11ba6414, @link='syz1\x00'}}}, [""]}, 0x68}}, 0x24004000) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f00000016c0)={0x0, 0x2, r5, 0xed8b}) sendfile(r4, 0xffffffffffffffff, &(0x7f0000001740)=0x8, 0x349f0ef6) [ 90.147020] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 90.151732] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 90.166030] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 90.173173] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 90.188864] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 90.194008] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 90.196018] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 90.197908] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 90.199076] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 90.201386] Bluetooth: hci0: HCI_REQ-0x0c1a [ 90.202022] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 90.204557] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 90.228867] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 90.232123] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 90.238290] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 90.283187] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 90.285489] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 90.286470] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 90.288870] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 90.290604] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 90.292013] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 90.293270] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 90.294638] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 90.295814] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 90.297134] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 90.297873] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 90.298662] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 90.299661] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 90.300788] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 90.302744] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 90.312459] Bluetooth: hci1: HCI_REQ-0x0c1a [ 90.314747] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 90.316603] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 90.320212] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 90.322470] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 90.327081] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 90.327752] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 90.328825] Bluetooth: hci2: HCI_REQ-0x0c1a [ 90.330625] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 90.331663] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 90.333062] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 90.334866] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 90.337253] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 90.339805] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 90.341711] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 90.343894] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 90.345733] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 90.348149] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 90.350212] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 90.352413] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 90.354215] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 90.359038] Bluetooth: hci3: HCI_REQ-0x0c1a [ 90.360378] Bluetooth: hci5: HCI_REQ-0x0c1a [ 90.371209] Bluetooth: hci7: HCI_REQ-0x0c1a [ 90.372419] Bluetooth: hci4: HCI_REQ-0x0c1a [ 90.378184] Bluetooth: hci6: HCI_REQ-0x0c1a [ 92.289804] Bluetooth: hci0: command 0x0409 tx timeout [ 92.353050] Bluetooth: hci2: command 0x0409 tx timeout [ 92.416174] Bluetooth: hci4: command 0x0409 tx timeout [ 92.416749] Bluetooth: hci5: command 0x0409 tx timeout [ 92.417034] Bluetooth: hci6: command 0x0409 tx timeout [ 92.420221] Bluetooth: hci1: command 0x0409 tx timeout [ 92.421634] Bluetooth: hci7: command 0x0409 tx timeout [ 92.422802] Bluetooth: hci3: command 0x0409 tx timeout [ 94.337072] Bluetooth: hci0: command 0x041b tx timeout [ 94.400141] Bluetooth: hci2: command 0x041b tx timeout [ 94.465093] Bluetooth: hci3: command 0x041b tx timeout [ 94.465737] Bluetooth: hci7: command 0x041b tx timeout [ 94.466327] Bluetooth: hci1: command 0x041b tx timeout [ 94.466871] Bluetooth: hci6: command 0x041b tx timeout [ 94.467472] Bluetooth: hci5: command 0x041b tx timeout [ 94.468045] Bluetooth: hci4: command 0x041b tx timeout [ 96.385129] Bluetooth: hci0: command 0x040f tx timeout [ 96.448029] Bluetooth: hci2: command 0x040f tx timeout [ 96.512070] Bluetooth: hci4: command 0x040f tx timeout [ 96.512708] Bluetooth: hci5: command 0x040f tx timeout [ 96.513750] Bluetooth: hci6: command 0x040f tx timeout [ 96.514661] Bluetooth: hci1: command 0x040f tx timeout [ 96.515623] Bluetooth: hci7: command 0x040f tx timeout [ 96.516557] Bluetooth: hci3: command 0x040f tx timeout [ 98.432123] Bluetooth: hci0: command 0x0419 tx timeout [ 98.496055] Bluetooth: hci2: command 0x0419 tx timeout [ 98.560153] Bluetooth: hci3: command 0x0419 tx timeout [ 98.561522] Bluetooth: hci7: command 0x0419 tx timeout [ 98.562443] Bluetooth: hci1: command 0x0419 tx timeout [ 98.563361] Bluetooth: hci6: command 0x0419 tx timeout [ 98.563898] Bluetooth: hci5: command 0x0419 tx timeout [ 98.565087] Bluetooth: hci4: command 0x0419 tx timeout [ 149.980426] syz-executor.2 (300) used greatest stack depth: 24432 bytes left [ 152.672585] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 152.679923] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 152.681543] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 152.688332] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 152.712641] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 152.734927] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 152.736205] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 152.738605] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 152.739624] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 152.740520] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 152.741497] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 152.742324] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 152.743132] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 152.745117] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 152.745853] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 152.750263] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 152.751142] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 152.751826] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 152.755473] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 152.755619] Bluetooth: hci0: HCI_REQ-0x0c1a [ 152.756333] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 152.757442] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 152.758243] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 152.759083] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 152.762910] Bluetooth: hci2: HCI_REQ-0x0c1a [ 152.766479] Bluetooth: hci3: HCI_REQ-0x0c1a [ 152.767245] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 152.779755] Bluetooth: hci1: HCI_REQ-0x0c1a [ 152.826681] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 152.829899] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 152.835181] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 152.836137] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 152.839122] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 152.840785] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 152.844647] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 152.845713] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 152.847677] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 152.847804] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 152.849887] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 152.851427] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 152.852238] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 152.856586] Bluetooth: hci4: HCI_REQ-0x0c1a [ 152.861206] Bluetooth: hci6: HCI_REQ-0x0c1a [ 152.866489] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 152.874188] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 152.879308] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 152.883821] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 152.887168] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 152.892253] Bluetooth: hci5: HCI_REQ-0x0c1a [ 154.816093] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 154.816113] Bluetooth: hci1: command 0x0409 tx timeout [ 154.816161] Bluetooth: hci3: command 0x0409 tx timeout [ 154.817821] Bluetooth: hci2: command 0x0409 tx timeout [ 154.817881] Bluetooth: hci0: command 0x0409 tx timeout [ 154.880206] Bluetooth: hci6: command 0x0409 tx timeout [ 154.880776] Bluetooth: hci4: command 0x0409 tx timeout [ 154.944533] Bluetooth: hci5: command 0x0409 tx timeout [ 156.864060] Bluetooth: hci0: command 0x041b tx timeout [ 156.865345] Bluetooth: hci2: command 0x041b tx timeout [ 156.865866] Bluetooth: hci3: command 0x041b tx timeout [ 156.866754] Bluetooth: hci1: command 0x041b tx timeout [ 156.928059] Bluetooth: hci4: command 0x041b tx timeout [ 156.928715] Bluetooth: hci6: command 0x041b tx timeout [ 156.992494] Bluetooth: hci5: command 0x041b tx timeout [ 158.912124] Bluetooth: hci1: command 0x040f tx timeout [ 158.912783] Bluetooth: hci3: command 0x040f tx timeout [ 158.913819] Bluetooth: hci2: command 0x040f tx timeout [ 158.914741] Bluetooth: hci0: command 0x040f tx timeout [ 158.977064] Bluetooth: hci6: command 0x040f tx timeout [ 158.978933] Bluetooth: hci4: command 0x040f tx timeout [ 159.040045] Bluetooth: hci5: command 0x040f tx timeout [ 160.064820] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 160.961670] Bluetooth: hci0: command 0x0419 tx timeout [ 160.962619] Bluetooth: hci2: command 0x0419 tx timeout [ 160.963667] Bluetooth: hci3: command 0x0419 tx timeout [ 160.965402] Bluetooth: hci1: command 0x0419 tx timeout [ 161.025030] Bluetooth: hci4: command 0x0419 tx timeout [ 161.025619] Bluetooth: hci6: command 0x0419 tx timeout [ 161.088132] Bluetooth: hci5: command 0x0419 tx timeout [ 163.015342] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 163.018288] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 163.019658] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 163.022818] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 163.026263] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 163.028242] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 163.048065] Bluetooth: hci7: HCI_REQ-0x0c1a [ 165.121474] Bluetooth: hci7: command 0x0409 tx timeout [ 167.169025] Bluetooth: hci7: command 0x041b tx timeout [ 169.217080] Bluetooth: hci7: command 0x040f tx timeout [ 171.264030] Bluetooth: hci7: command 0x0419 tx timeout [ 214.860905] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 214.864822] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 214.868131] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 214.876562] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 214.878135] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 214.880829] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 214.885658] Bluetooth: hci0: HCI_REQ-0x0c1a [ 215.432351] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 215.441525] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 215.443056] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 215.444271] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 215.445838] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 215.446711] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 215.447805] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 215.452715] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 215.453669] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 215.458217] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 215.459720] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 215.474847] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 215.481315] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 215.485135] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 215.488465] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 215.489882] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 215.490982] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 215.494052] Bluetooth: hci3: HCI_REQ-0x0c1a [ 215.508599] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 215.509380] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 215.512082] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 215.512794] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 215.518008] Bluetooth: hci5: HCI_REQ-0x0c1a [ 215.521036] Bluetooth: hci4: HCI_REQ-0x0c1a [ 215.528688] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 215.530350] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 215.531762] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 215.543441] Bluetooth: hci6: HCI_REQ-0x0c1a [ 216.896103] Bluetooth: hci0: command 0x0409 tx timeout [ 217.408041] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 217.409201] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 217.536015] Bluetooth: hci5: command 0x0409 tx timeout [ 217.537042] Bluetooth: hci3: command 0x0409 tx timeout [ 217.600004] Bluetooth: hci6: command 0x0409 tx timeout [ 217.600511] Bluetooth: hci4: command 0x0409 tx timeout [ 218.944008] Bluetooth: hci0: command 0x041b tx timeout [ 219.584150] Bluetooth: hci3: command 0x041b tx timeout [ 219.584881] Bluetooth: hci5: command 0x041b tx timeout [ 219.648057] Bluetooth: hci4: command 0x041b tx timeout [ 219.648743] Bluetooth: hci6: command 0x041b tx timeout [ 220.392832] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 220.398661] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 220.403222] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 220.406522] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 220.407621] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 220.408541] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 220.412313] Bluetooth: hci1: HCI_REQ-0x0c1a [ 220.740854] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 220.742925] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 220.743848] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 220.747636] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 220.748741] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 220.749892] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 220.755980] Bluetooth: hci2: HCI_REQ-0x0c1a [ 220.992038] Bluetooth: hci0: command 0x040f tx timeout [ 221.632091] Bluetooth: hci5: command 0x040f tx timeout [ 221.633293] Bluetooth: hci3: command 0x040f tx timeout [ 221.696041] Bluetooth: hci6: command 0x040f tx timeout [ 221.696730] Bluetooth: hci4: command 0x040f tx timeout [ 222.464993] Bluetooth: hci1: command 0x0409 tx timeout [ 222.849000] Bluetooth: hci2: command 0x0409 tx timeout [ 223.040150] Bluetooth: hci0: command 0x0419 tx timeout [ 223.680036] Bluetooth: hci3: command 0x0419 tx timeout [ 223.680792] Bluetooth: hci5: command 0x0419 tx timeout [ 223.744046] Bluetooth: hci4: command 0x0419 tx timeout [ 223.744679] Bluetooth: hci6: command 0x0419 tx timeout [ 224.512187] Bluetooth: hci1: command 0x041b tx timeout [ 224.896122] Bluetooth: hci2: command 0x041b tx timeout [ 226.560122] Bluetooth: hci1: command 0x040f tx timeout [ 226.688088] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 226.944015] Bluetooth: hci2: command 0x040f tx timeout [ 228.607986] Bluetooth: hci1: command 0x0419 tx timeout [ 228.993096] Bluetooth: hci2: command 0x0419 tx timeout [ 229.666516] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 229.676619] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 229.683857] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 229.691109] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 229.695134] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 229.698302] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 229.715146] Bluetooth: hci7: HCI_REQ-0x0c1a [ 231.743988] Bluetooth: hci7: command 0x0409 tx timeout [ 233.793000] Bluetooth: hci7: command 0x041b tx timeout [ 235.840049] Bluetooth: hci7: command 0x040f tx timeout [ 237.888991] Bluetooth: hci7: command 0x0419 tx timeout 08:11:39 executing program 4: r0 = perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r2 = fcntl$dupfd(r0, 0x0, r1) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000440)={{{@in=@multicast1, @in, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0xfffffffffffffffc}, {0x2}, 0x0, 0x0, 0x1}, {{@in6=@loopback, 0x0, 0x6c}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0x8}}, 0xe8) close(r3) r4 = perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r6 = fcntl$dupfd(r4, 0x0, r5) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r6, 0x0) [ 268.911431] audit: type=1400 audit(1663315899.196:7): avc: denied { open } for pid=9394 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 268.913086] audit: type=1400 audit(1663315899.196:8): avc: denied { kernel } for pid=9394 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 268.944446] audit: type=1400 audit(1663315899.228:9): avc: denied { read } for pid=9394 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 268.949820] ------------[ cut here ]------------ [ 268.949847] [ 268.949851] ====================================================== [ 268.949855] WARNING: possible circular locking dependency detected [ 268.949859] 6.0.0-rc5-next-20220915 #1 Not tainted [ 268.949866] ------------------------------------------------------ [ 268.949870] syz-executor.4/9395 is trying to acquire lock: [ 268.949876] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 268.949917] [ 268.949917] but task is already holding lock: [ 268.949919] ffff88800ecf2820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 268.949950] [ 268.949950] which lock already depends on the new lock. [ 268.949950] [ 268.949953] [ 268.949953] the existing dependency chain (in reverse order) is: [ 268.949957] [ 268.949957] -> #3 (&ctx->lock){....}-{2:2}: [ 268.949971] _raw_spin_lock+0x2a/0x40 [ 268.949989] __perf_event_task_sched_out+0x53b/0x18d0 [ 268.950002] __schedule+0xedd/0x2470 [ 268.950015] schedule+0xda/0x1b0 [ 268.950030] exit_to_user_mode_prepare+0x114/0x1a0 [ 268.950060] syscall_exit_to_user_mode+0x19/0x40 [ 268.950082] do_syscall_64+0x48/0x90 [ 268.950097] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 268.950115] [ 268.950115] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 268.950130] _raw_spin_lock_nested+0x30/0x40 [ 268.950145] raw_spin_rq_lock_nested+0x1e/0x30 [ 268.950159] task_fork_fair+0x63/0x4d0 [ 268.950176] sched_cgroup_fork+0x3d0/0x540 [ 268.950191] copy_process+0x4183/0x6e20 [ 268.950202] kernel_clone+0xe7/0x890 [ 268.950211] user_mode_thread+0xad/0xf0 [ 268.950221] rest_init+0x24/0x250 [ 268.950238] arch_call_rest_init+0xf/0x14 [ 268.950251] start_kernel+0x4c1/0x4e6 [ 268.950261] secondary_startup_64_no_verify+0xe0/0xeb [ 268.950276] [ 268.950276] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 268.950290] _raw_spin_lock_irqsave+0x39/0x60 [ 268.950305] try_to_wake_up+0xab/0x1920 [ 268.950319] up+0x75/0xb0 [ 268.950330] __up_console_sem+0x6e/0x80 [ 268.950347] console_unlock+0x46a/0x590 [ 268.950363] vt_ioctl+0x2822/0x2ca0 [ 268.950376] tty_ioctl+0x7c4/0x1700 [ 268.950388] __x64_sys_ioctl+0x19a/0x210 [ 268.950404] do_syscall_64+0x3b/0x90 [ 268.950418] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 268.950435] [ 268.950435] -> #0 ((console_sem).lock){....}-{2:2}: [ 268.950449] __lock_acquire+0x2a02/0x5e70 [ 268.950466] lock_acquire+0x1a2/0x530 [ 268.950482] _raw_spin_lock_irqsave+0x39/0x60 [ 268.950498] down_trylock+0xe/0x70 [ 268.950511] __down_trylock_console_sem+0x3b/0xd0 [ 268.950527] vprintk_emit+0x16b/0x560 [ 268.950544] vprintk+0x84/0xa0 [ 268.950561] _printk+0xba/0xf1 [ 268.950579] report_bug.cold+0x72/0xab [ 268.950592] handle_bug+0x3c/0x70 [ 268.950606] exc_invalid_op+0x14/0x50 [ 268.950619] asm_exc_invalid_op+0x16/0x20 [ 268.950636] group_sched_out.part.0+0x2c7/0x460 [ 268.950647] ctx_sched_out+0x8f1/0xc10 [ 268.950656] __perf_event_task_sched_out+0x6d0/0x18d0 [ 268.950669] __schedule+0xedd/0x2470 [ 268.950679] preempt_schedule_common+0x45/0xc0 [ 268.950690] __cond_resched+0x17/0x30 [ 268.950701] __mutex_lock+0xa3/0x14d0 [ 268.950712] __do_sys_perf_event_open+0x1eec/0x32c0 [ 268.950725] do_syscall_64+0x3b/0x90 [ 268.950738] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 268.950756] [ 268.950756] other info that might help us debug this: [ 268.950756] [ 268.950759] Chain exists of: [ 268.950759] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 268.950759] [ 268.950774] Possible unsafe locking scenario: [ 268.950774] [ 268.950777] CPU0 CPU1 [ 268.950779] ---- ---- [ 268.950782] lock(&ctx->lock); [ 268.950788] lock(&rq->__lock); [ 268.950794] lock(&ctx->lock); [ 268.950800] lock((console_sem).lock); [ 268.950806] [ 268.950806] *** DEADLOCK *** [ 268.950806] [ 268.950808] 2 locks held by syz-executor.4/9395: [ 268.950816] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 268.950841] #1: ffff88800ecf2820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 268.950869] [ 268.950869] stack backtrace: [ 268.950872] CPU: 1 PID: 9395 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220915 #1 [ 268.950885] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 268.950893] Call Trace: [ 268.950897] [ 268.950901] dump_stack_lvl+0x8b/0xb3 [ 268.950916] check_noncircular+0x263/0x2e0 [ 268.950933] ? format_decode+0x26c/0xb50 [ 268.950950] ? print_circular_bug+0x450/0x450 [ 268.950967] ? enable_ptr_key_workfn+0x20/0x20 [ 268.950981] ? __lockdep_reset_lock+0x180/0x180 [ 268.950999] ? format_decode+0x26c/0xb50 [ 268.951019] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 268.951041] __lock_acquire+0x2a02/0x5e70 [ 268.951063] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 268.951085] lock_acquire+0x1a2/0x530 [ 268.951102] ? down_trylock+0xe/0x70 [ 268.951117] ? rcu_read_unlock+0x40/0x40 [ 268.951135] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 268.951156] ? vprintk+0x84/0xa0 [ 268.951175] _raw_spin_lock_irqsave+0x39/0x60 [ 268.951191] ? down_trylock+0xe/0x70 [ 268.951204] down_trylock+0xe/0x70 [ 268.951218] ? vprintk+0x84/0xa0 [ 268.951235] __down_trylock_console_sem+0x3b/0xd0 [ 268.951253] vprintk_emit+0x16b/0x560 [ 268.951270] ? lock_downgrade+0x6d0/0x6d0 [ 268.951289] vprintk+0x84/0xa0 [ 268.951307] _printk+0xba/0xf1 [ 268.951325] ? record_print_text.cold+0x16/0x16 [ 268.951346] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 268.951360] ? lock_downgrade+0x6d0/0x6d0 [ 268.951379] ? report_bug.cold+0x66/0xab [ 268.951393] ? group_sched_out.part.0+0x2c7/0x460 [ 268.951405] report_bug.cold+0x72/0xab [ 268.951420] handle_bug+0x3c/0x70 [ 268.951434] exc_invalid_op+0x14/0x50 [ 268.951450] asm_exc_invalid_op+0x16/0x20 [ 268.951468] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 268.951482] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 268.951494] RSP: 0018:ffff8880375ff978 EFLAGS: 00010006 [ 268.951503] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 268.951511] RDX: ffff8880174b1ac0 RSI: ffffffff81566027 RDI: 0000000000000005 [ 268.951519] RBP: ffff88803b920b90 R08: 0000000000000005 R09: 0000000000000001 [ 268.951526] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800ecf2800 [ 268.951534] R13: ffff88806cf3d100 R14: ffffffff8547bfc0 R15: 0000000000000002 [ 268.951545] ? group_sched_out.part.0+0x2c7/0x460 [ 268.951558] ? group_sched_out.part.0+0x2c7/0x460 [ 268.951571] ctx_sched_out+0x8f1/0xc10 [ 268.951583] __perf_event_task_sched_out+0x6d0/0x18d0 [ 268.951598] ? lock_is_held_type+0xd7/0x130 [ 268.951618] ? __perf_cgroup_move+0x160/0x160 [ 268.951630] ? set_next_entity+0x304/0x550 [ 268.951648] ? update_curr+0x267/0x740 [ 268.951666] ? lock_is_held_type+0xd7/0x130 [ 268.951686] __schedule+0xedd/0x2470 [ 268.951699] ? io_schedule_timeout+0x150/0x150 [ 268.951712] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 268.951727] ? __cond_resched+0x17/0x30 [ 268.951739] preempt_schedule_common+0x45/0xc0 [ 268.951752] __cond_resched+0x17/0x30 [ 268.951763] __mutex_lock+0xa3/0x14d0 [ 268.951777] ? lock_is_held_type+0xd7/0x130 [ 268.951795] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 268.951810] ? mutex_lock_io_nested+0x1310/0x1310 [ 268.951823] ? lock_release+0x3b2/0x750 [ 268.951841] ? __up_read+0x192/0x730 [ 268.951855] ? up_write+0x480/0x480 [ 268.951870] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 268.951889] __do_sys_perf_event_open+0x1eec/0x32c0 [ 268.951906] ? perf_compat_ioctl+0x130/0x130 [ 268.951918] ? xfd_validate_state+0x59/0x180 [ 268.951942] ? syscall_enter_from_user_mode+0x1d/0x50 [ 268.951962] ? syscall_enter_from_user_mode+0x1d/0x50 [ 268.951983] do_syscall_64+0x3b/0x90 [ 268.951997] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 268.952021] RIP: 0033:0x7fe85859bb19 [ 268.952032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 268.952042] RSP: 002b:00007fe855b11188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 268.952053] RAX: ffffffffffffffda RBX: 00007fe8586aef60 RCX: 00007fe85859bb19 [ 268.952061] RDX: ffffffefffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 268.952069] RBP: 00007fe8585f5f6d R08: 0000000000000000 R09: 0000000000000000 [ 268.952076] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 268.952083] R13: 00007ffce3b5eb9f R14: 00007fe855b11300 R15: 0000000000022000 [ 268.952096] [ 269.010277] WARNING: CPU: 1 PID: 9395 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 269.010880] Modules linked in: [ 269.011114] CPU: 1 PID: 9395 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220915 #1 [ 269.011632] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 269.012373] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 269.012728] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 269.014023] RSP: 0018:ffff8880375ff978 EFLAGS: 00010006 [ 269.014375] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 269.014833] RDX: ffff8880174b1ac0 RSI: ffffffff81566027 RDI: 0000000000000005 [ 269.015299] RBP: ffff88803b920b90 R08: 0000000000000005 R09: 0000000000000001 [ 269.015757] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800ecf2800 [ 269.016227] R13: ffff88806cf3d100 R14: ffffffff8547bfc0 R15: 0000000000000002 [ 269.016687] FS: 00007fe855b11700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 269.017240] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 269.017618] CR2: 0000001b32d24000 CR3: 00000000306ae000 CR4: 0000000000350fe0 [ 269.018084] Call Trace: [ 269.018259] [ 269.018417] ctx_sched_out+0x8f1/0xc10 [ 269.018680] __perf_event_task_sched_out+0x6d0/0x18d0 [ 269.019029] ? lock_is_held_type+0xd7/0x130 [ 269.019329] ? __perf_cgroup_move+0x160/0x160 [ 269.019627] ? set_next_entity+0x304/0x550 [ 269.019917] ? update_curr+0x267/0x740 [ 269.020190] ? lock_is_held_type+0xd7/0x130 [ 269.020481] __schedule+0xedd/0x2470 [ 269.020733] ? io_schedule_timeout+0x150/0x150 [ 269.021046] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 269.021408] ? __cond_resched+0x17/0x30 [ 269.021674] preempt_schedule_common+0x45/0xc0 [ 269.021980] __cond_resched+0x17/0x30 [ 269.022241] __mutex_lock+0xa3/0x14d0 [ 269.022499] ? lock_is_held_type+0xd7/0x130 [ 269.022789] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 269.023144] ? mutex_lock_io_nested+0x1310/0x1310 [ 269.023464] ? lock_release+0x3b2/0x750 [ 269.023735] ? __up_read+0x192/0x730 [ 269.023988] ? up_write+0x480/0x480 [ 269.024246] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 269.024586] __do_sys_perf_event_open+0x1eec/0x32c0 [ 269.025080] ? perf_compat_ioctl+0x130/0x130 [ 269.025528] ? xfd_validate_state+0x59/0x180 [ 269.025952] ? syscall_enter_from_user_mode+0x1d/0x50 [ 269.026460] ? syscall_enter_from_user_mode+0x1d/0x50 [ 269.026947] do_syscall_64+0x3b/0x90 [ 269.027327] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 269.027808] RIP: 0033:0x7fe85859bb19 [ 269.028176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 269.029924] RSP: 002b:00007fe855b11188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 269.030665] RAX: ffffffffffffffda RBX: 00007fe8586aef60 RCX: 00007fe85859bb19 [ 269.031359] RDX: ffffffefffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 269.032051] RBP: 00007fe8585f5f6d R08: 0000000000000000 R09: 0000000000000000 [ 269.032739] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 269.033436] R13: 00007ffce3b5eb9f R14: 00007fe855b11300 R15: 0000000000022000 [ 269.034127] [ 269.034358] irq event stamp: 1744 [ 269.034669] hardirqs last enabled at (1743): [] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 269.035616] hardirqs last disabled at (1744): [] __schedule+0x1225/0x2470 [ 269.036381] softirqs last enabled at (1458): [] __irq_exit_rcu+0x11b/0x180 [ 269.037237] softirqs last disabled at (1373): [] __irq_exit_rcu+0x11b/0x180 [ 269.038052] ---[ end trace 0000000000000000 ]--- 08:11:39 executing program 4: r0 = perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r2 = fcntl$dupfd(r0, 0x0, r1) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000440)={{{@in=@multicast1, @in, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0xfffffffffffffffc}, {0x2}, 0x0, 0x0, 0x1}, {{@in6=@loopback, 0x0, 0x6c}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0x8}}, 0xe8) close(r3) r4 = perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r6 = fcntl$dupfd(r4, 0x0, r5) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r6, 0x0) 08:11:39 executing program 4: syz_emit_ethernet(0xbe, &(0x7f0000000180)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @private=0xa010100}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "e75f2f24fd8880e8306b4a095172ed27d606a5efbc21ae86ea2df9ed5c79789e", "000c830eadcb3afd74e8c6f03b652b3a5e0ff4ff1b000000980000000200", "5c8f753408d9b09085122088ac5847d84f306b42e00f9bbda83edf23", {"4de0eff460934aa7dd7cf13bcf8038c4", "c10058e7b3b5fa2d50b50514e600"}}}}}}}, 0x0) syz_emit_ethernet(0xfa, &(0x7f0000000240)={@empty, @multicast, @void, {@llc_tr={0x11, {@llc={0xaa, 0x1, 'Ty', "71f24764817cd6cd0ee3ce132ff4cfbcb52338c1b8e6de3b0e9cc8daa0b0499c22c5951c9b4a4f0c0c4bd507d0c5686317402a7b89b1be9333ff159a2f3c9fa89ee87c61240374834ed6dc949ffa04ed1a70332452e8186b3a5ac4dc29ca63240889de8fb0527344b3c599db09da2c9c7d8f9a515a1e903f9f2c7aee8fa8651961edf2168207836dc9ae7c83c98641fef7d9c5eb0ec7027cb656d17a740865e867569b393aa6c95ef11a1dde129b29209fd870b1c8a1b3acafe345504251abe0cab60211a53d6b48a9403b58d4f03e1b72afe18c1a30404201dfcef2f7938115fe516e1d4d5caa88"}}}}}, 0x0) 08:11:39 executing program 4: syz_emit_ethernet(0xbe, &(0x7f0000000180)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @private=0xa010100}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "e75f2f24fd8880e8306b4a095172ed27d606a5efbc21ae86ea2df9ed5c79789e", "000c830eadcb3afd74e8c6f03b652b3a5e0ff4ff1b000000980000000200", "5c8f753408d9b09085122088ac5847d84f306b42e00f9bbda83edf23", {"4de0eff460934aa7dd7cf13bcf8038c4", "c10058e7b3b5fa2d50b50514e600"}}}}}}}, 0x0) syz_emit_ethernet(0xfa, &(0x7f0000000240)={@empty, @multicast, @void, {@llc_tr={0x11, {@llc={0xaa, 0x1, 'Ty', "71f24764817cd6cd0ee3ce132ff4cfbcb52338c1b8e6de3b0e9cc8daa0b0499c22c5951c9b4a4f0c0c4bd507d0c5686317402a7b89b1be9333ff159a2f3c9fa89ee87c61240374834ed6dc949ffa04ed1a70332452e8186b3a5ac4dc29ca63240889de8fb0527344b3c599db09da2c9c7d8f9a515a1e903f9f2c7aee8fa8651961edf2168207836dc9ae7c83c98641fef7d9c5eb0ec7027cb656d17a740865e867569b393aa6c95ef11a1dde129b29209fd870b1c8a1b3acafe345504251abe0cab60211a53d6b48a9403b58d4f03e1b72afe18c1a30404201dfcef2f7938115fe516e1d4d5caa88"}}}}}, 0x0) 08:11:39 executing program 4: syz_emit_ethernet(0xbe, &(0x7f0000000180)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @private=0xa010100}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "e75f2f24fd8880e8306b4a095172ed27d606a5efbc21ae86ea2df9ed5c79789e", "000c830eadcb3afd74e8c6f03b652b3a5e0ff4ff1b000000980000000200", "5c8f753408d9b09085122088ac5847d84f306b42e00f9bbda83edf23", {"4de0eff460934aa7dd7cf13bcf8038c4", "c10058e7b3b5fa2d50b50514e600"}}}}}}}, 0x0) syz_emit_ethernet(0xfa, &(0x7f0000000240)={@empty, @multicast, @void, {@llc_tr={0x11, {@llc={0xaa, 0x1, 'Ty', "71f24764817cd6cd0ee3ce132ff4cfbcb52338c1b8e6de3b0e9cc8daa0b0499c22c5951c9b4a4f0c0c4bd507d0c5686317402a7b89b1be9333ff159a2f3c9fa89ee87c61240374834ed6dc949ffa04ed1a70332452e8186b3a5ac4dc29ca63240889de8fb0527344b3c599db09da2c9c7d8f9a515a1e903f9f2c7aee8fa8651961edf2168207836dc9ae7c83c98641fef7d9c5eb0ec7027cb656d17a740865e867569b393aa6c95ef11a1dde129b29209fd870b1c8a1b3acafe345504251abe0cab60211a53d6b48a9403b58d4f03e1b72afe18c1a30404201dfcef2f7938115fe516e1d4d5caa88"}}}}}, 0x0) 08:11:39 executing program 4: syz_emit_ethernet(0xbe, &(0x7f0000000180)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @private=0xa010100}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "e75f2f24fd8880e8306b4a095172ed27d606a5efbc21ae86ea2df9ed5c79789e", "000c830eadcb3afd74e8c6f03b652b3a5e0ff4ff1b000000980000000200", "5c8f753408d9b09085122088ac5847d84f306b42e00f9bbda83edf23", {"4de0eff460934aa7dd7cf13bcf8038c4", "c10058e7b3b5fa2d50b50514e600"}}}}}}}, 0x0) syz_emit_ethernet(0xfa, &(0x7f0000000240)={@empty, @multicast, @void, {@llc_tr={0x11, {@llc={0xaa, 0x1, 'Ty', "71f24764817cd6cd0ee3ce132ff4cfbcb52338c1b8e6de3b0e9cc8daa0b0499c22c5951c9b4a4f0c0c4bd507d0c5686317402a7b89b1be9333ff159a2f3c9fa89ee87c61240374834ed6dc949ffa04ed1a70332452e8186b3a5ac4dc29ca63240889de8fb0527344b3c599db09da2c9c7d8f9a515a1e903f9f2c7aee8fa8651961edf2168207836dc9ae7c83c98641fef7d9c5eb0ec7027cb656d17a740865e867569b393aa6c95ef11a1dde129b29209fd870b1c8a1b3acafe345504251abe0cab60211a53d6b48a9403b58d4f03e1b72afe18c1a30404201dfcef2f7938115fe516e1d4d5caa88"}}}}}, 0x0) 08:11:39 executing program 4: syz_emit_ethernet(0xbe, &(0x7f0000000180)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @private=0xa010100}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "e75f2f24fd8880e8306b4a095172ed27d606a5efbc21ae86ea2df9ed5c79789e", "000c830eadcb3afd74e8c6f03b652b3a5e0ff4ff1b000000980000000200", "5c8f753408d9b09085122088ac5847d84f306b42e00f9bbda83edf23", {"4de0eff460934aa7dd7cf13bcf8038c4", "c10058e7b3b5fa2d50b50514e600"}}}}}}}, 0x0) 08:11:39 executing program 4: syz_emit_ethernet(0x0, 0x0, 0x0) VM DIAGNOSIS: 08:11:39 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000001 RCX=0000000000000000 RDX=ffff88801ba75040 RSI=0000000000000001 RDI=0000000000000000 RBP=ffffea0000190540 RSP=ffff888037edfa90 R8 =0000000000000001 R9 =ffffea0000190577 R10=fffff940000320ae R11=0000000000000001 R12=ffffea0000190574 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff814613f0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f96d8e7c540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f96d932d008 CR3=000000003c85c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffff00ffffffffff ffffffffffff00ff YMM02=0000000000000000 0000000000000000 4c4700362e322e32 5f4342494c470035 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000470035 YMM04=0000000000000000 0000000000000000 4342494c4700362e 322e325f4342494c YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000029 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b29f1 RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff8880375ff3c8 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000029 R11=0000000000000001 R12=0000000000000029 R13=ffffffff87641b60 R14=0000000000000010 R15=ffffffff822b29e0 RIP=ffffffff822b2a49 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fe855b11700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b32d24000 CR3=00000000306ae000 CR4=00350fe0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fe8586827c0 00007fe8586827c8 YMM02=0000000000000000 0000000000000000 00007fe8586827e0 00007fe8586827c0 YMM03=0000000000000000 0000000000000000 00007fe8586827c8 00007fe8586827c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000