Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:41981' (ECDSA) to the list of known hosts. 2022/09/21 06:59:18 fuzzer started 2022/09/21 06:59:19 dialing manager at localhost:34957 syzkaller login: [ 36.553527] cgroup: Unknown subsys name 'net' [ 36.651254] cgroup: Unknown subsys name 'rlimit' 2022/09/21 06:59:33 syscalls: 2215 2022/09/21 06:59:33 code coverage: enabled 2022/09/21 06:59:33 comparison tracing: enabled 2022/09/21 06:59:33 extra coverage: enabled 2022/09/21 06:59:33 setuid sandbox: enabled 2022/09/21 06:59:33 namespace sandbox: enabled 2022/09/21 06:59:33 Android sandbox: enabled 2022/09/21 06:59:33 fault injection: enabled 2022/09/21 06:59:33 leak checking: enabled 2022/09/21 06:59:33 net packet injection: enabled 2022/09/21 06:59:33 net device setup: enabled 2022/09/21 06:59:33 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/21 06:59:33 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/21 06:59:33 USB emulation: enabled 2022/09/21 06:59:33 hci packet injection: enabled 2022/09/21 06:59:33 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220920) 2022/09/21 06:59:33 802.15.4 emulation: enabled 2022/09/21 06:59:33 fetching corpus: 50, signal 30061/31819 (executing program) 2022/09/21 06:59:33 fetching corpus: 100, signal 40574/43894 (executing program) 2022/09/21 06:59:33 fetching corpus: 150, signal 47578/52376 (executing program) 2022/09/21 06:59:34 fetching corpus: 200, signal 55556/61725 (executing program) 2022/09/21 06:59:34 fetching corpus: 250, signal 59626/67143 (executing program) 2022/09/21 06:59:34 fetching corpus: 300, signal 67709/76374 (executing program) 2022/09/21 06:59:34 fetching corpus: 350, signal 72172/82030 (executing program) 2022/09/21 06:59:34 fetching corpus: 400, signal 76685/87691 (executing program) 2022/09/21 06:59:34 fetching corpus: 450, signal 81099/93170 (executing program) 2022/09/21 06:59:34 fetching corpus: 500, signal 84659/97764 (executing program) 2022/09/21 06:59:34 fetching corpus: 550, signal 88399/102484 (executing program) 2022/09/21 06:59:35 fetching corpus: 600, signal 92913/107845 (executing program) 2022/09/21 06:59:35 fetching corpus: 650, signal 96871/112655 (executing program) 2022/09/21 06:59:35 fetching corpus: 700, signal 100734/117344 (executing program) 2022/09/21 06:59:35 fetching corpus: 750, signal 103624/121030 (executing program) 2022/09/21 06:59:35 fetching corpus: 800, signal 107446/125545 (executing program) 2022/09/21 06:59:35 fetching corpus: 850, signal 109188/128145 (executing program) 2022/09/21 06:59:35 fetching corpus: 900, signal 113064/132615 (executing program) 2022/09/21 06:59:36 fetching corpus: 950, signal 115334/135564 (executing program) 2022/09/21 06:59:36 fetching corpus: 1000, signal 117276/138249 (executing program) 2022/09/21 06:59:36 fetching corpus: 1050, signal 119493/141156 (executing program) 2022/09/21 06:59:36 fetching corpus: 1100, signal 121853/144065 (executing program) 2022/09/21 06:59:36 fetching corpus: 1150, signal 123457/146386 (executing program) 2022/09/21 06:59:36 fetching corpus: 1200, signal 124762/148514 (executing program) 2022/09/21 06:59:36 fetching corpus: 1250, signal 126587/150971 (executing program) 2022/09/21 06:59:36 fetching corpus: 1300, signal 128301/153312 (executing program) 2022/09/21 06:59:37 fetching corpus: 1350, signal 130193/155769 (executing program) 2022/09/21 06:59:37 fetching corpus: 1400, signal 131269/157591 (executing program) 2022/09/21 06:59:37 fetching corpus: 1450, signal 132897/159770 (executing program) 2022/09/21 06:59:37 fetching corpus: 1500, signal 134700/162051 (executing program) 2022/09/21 06:59:37 fetching corpus: 1550, signal 136270/164219 (executing program) 2022/09/21 06:59:37 fetching corpus: 1600, signal 137754/166240 (executing program) 2022/09/21 06:59:37 fetching corpus: 1650, signal 140090/168812 (executing program) 2022/09/21 06:59:37 fetching corpus: 1700, signal 141710/170862 (executing program) 2022/09/21 06:59:37 fetching corpus: 1750, signal 143397/172878 (executing program) 2022/09/21 06:59:38 fetching corpus: 1800, signal 144660/174635 (executing program) 2022/09/21 06:59:38 fetching corpus: 1850, signal 145607/176131 (executing program) 2022/09/21 06:59:38 fetching corpus: 1900, signal 146943/177877 (executing program) 2022/09/21 06:59:38 fetching corpus: 1950, signal 147791/179305 (executing program) 2022/09/21 06:59:38 fetching corpus: 2000, signal 149126/180979 (executing program) 2022/09/21 06:59:38 fetching corpus: 2050, signal 151424/183252 (executing program) 2022/09/21 06:59:38 fetching corpus: 2100, signal 152722/184870 (executing program) 2022/09/21 06:59:38 fetching corpus: 2150, signal 154134/186586 (executing program) 2022/09/21 06:59:39 fetching corpus: 2200, signal 156531/188810 (executing program) 2022/09/21 06:59:39 fetching corpus: 2250, signal 158171/190605 (executing program) 2022/09/21 06:59:39 fetching corpus: 2300, signal 159118/191902 (executing program) 2022/09/21 06:59:39 fetching corpus: 2350, signal 159559/192872 (executing program) 2022/09/21 06:59:39 fetching corpus: 2400, signal 161511/194792 (executing program) 2022/09/21 06:59:39 fetching corpus: 2450, signal 163642/196704 (executing program) 2022/09/21 06:59:39 fetching corpus: 2500, signal 165286/198352 (executing program) 2022/09/21 06:59:39 fetching corpus: 2550, signal 165730/199240 (executing program) 2022/09/21 06:59:40 fetching corpus: 2600, signal 166400/200301 (executing program) 2022/09/21 06:59:40 fetching corpus: 2650, signal 166989/201337 (executing program) 2022/09/21 06:59:40 fetching corpus: 2700, signal 167805/202427 (executing program) 2022/09/21 06:59:40 fetching corpus: 2750, signal 169279/203874 (executing program) 2022/09/21 06:59:40 fetching corpus: 2800, signal 170651/205219 (executing program) 2022/09/21 06:59:40 fetching corpus: 2850, signal 171854/206506 (executing program) 2022/09/21 06:59:40 fetching corpus: 2900, signal 173004/207729 (executing program) 2022/09/21 06:59:40 fetching corpus: 2950, signal 173622/208648 (executing program) 2022/09/21 06:59:41 fetching corpus: 3000, signal 174356/209564 (executing program) 2022/09/21 06:59:41 fetching corpus: 3050, signal 175293/210582 (executing program) 2022/09/21 06:59:41 fetching corpus: 3100, signal 176224/211648 (executing program) 2022/09/21 06:59:41 fetching corpus: 3150, signal 176933/212553 (executing program) 2022/09/21 06:59:41 fetching corpus: 3200, signal 177833/213536 (executing program) 2022/09/21 06:59:41 fetching corpus: 3250, signal 179069/214668 (executing program) 2022/09/21 06:59:41 fetching corpus: 3300, signal 179900/215614 (executing program) 2022/09/21 06:59:41 fetching corpus: 3350, signal 180453/216418 (executing program) 2022/09/21 06:59:42 fetching corpus: 3400, signal 181236/217281 (executing program) 2022/09/21 06:59:42 fetching corpus: 3450, signal 182026/218167 (executing program) 2022/09/21 06:59:42 fetching corpus: 3500, signal 182600/218899 (executing program) 2022/09/21 06:59:42 fetching corpus: 3550, signal 183184/219665 (executing program) 2022/09/21 06:59:42 fetching corpus: 3600, signal 183977/220486 (executing program) 2022/09/21 06:59:42 fetching corpus: 3650, signal 184605/221286 (executing program) 2022/09/21 06:59:42 fetching corpus: 3700, signal 185386/222062 (executing program) 2022/09/21 06:59:42 fetching corpus: 3750, signal 186070/222863 (executing program) 2022/09/21 06:59:43 fetching corpus: 3800, signal 186830/223627 (executing program) 2022/09/21 06:59:43 fetching corpus: 3850, signal 187602/224402 (executing program) 2022/09/21 06:59:43 fetching corpus: 3900, signal 188509/225221 (executing program) 2022/09/21 06:59:43 fetching corpus: 3950, signal 189604/226129 (executing program) 2022/09/21 06:59:43 fetching corpus: 4000, signal 190978/227121 (executing program) 2022/09/21 06:59:43 fetching corpus: 4050, signal 191627/227790 (executing program) 2022/09/21 06:59:43 fetching corpus: 4100, signal 192156/228414 (executing program) 2022/09/21 06:59:43 fetching corpus: 4150, signal 192761/229033 (executing program) 2022/09/21 06:59:44 fetching corpus: 4200, signal 193604/229731 (executing program) 2022/09/21 06:59:44 fetching corpus: 4250, signal 194265/230437 (executing program) 2022/09/21 06:59:44 fetching corpus: 4300, signal 194936/231069 (executing program) 2022/09/21 06:59:44 fetching corpus: 4350, signal 196050/231802 (executing program) 2022/09/21 06:59:44 fetching corpus: 4400, signal 197286/232554 (executing program) 2022/09/21 06:59:44 fetching corpus: 4450, signal 197754/233149 (executing program) 2022/09/21 06:59:44 fetching corpus: 4500, signal 198694/233796 (executing program) 2022/09/21 06:59:44 fetching corpus: 4550, signal 199340/234378 (executing program) 2022/09/21 06:59:44 fetching corpus: 4600, signal 199956/234890 (executing program) 2022/09/21 06:59:45 fetching corpus: 4650, signal 201034/235497 (executing program) 2022/09/21 06:59:45 fetching corpus: 4700, signal 201693/236055 (executing program) 2022/09/21 06:59:45 fetching corpus: 4750, signal 202307/236580 (executing program) 2022/09/21 06:59:45 fetching corpus: 4800, signal 202777/237027 (executing program) 2022/09/21 06:59:45 fetching corpus: 4850, signal 203718/237564 (executing program) 2022/09/21 06:59:45 fetching corpus: 4900, signal 204551/238069 (executing program) 2022/09/21 06:59:45 fetching corpus: 4950, signal 205114/238510 (executing program) 2022/09/21 06:59:45 fetching corpus: 5000, signal 205839/239006 (executing program) 2022/09/21 06:59:46 fetching corpus: 5050, signal 206673/239492 (executing program) 2022/09/21 06:59:46 fetching corpus: 5100, signal 207382/239970 (executing program) 2022/09/21 06:59:46 fetching corpus: 5150, signal 208490/240625 (executing program) 2022/09/21 06:59:46 fetching corpus: 5200, signal 209543/241054 (executing program) 2022/09/21 06:59:46 fetching corpus: 5250, signal 210000/241447 (executing program) 2022/09/21 06:59:46 fetching corpus: 5300, signal 210899/241854 (executing program) 2022/09/21 06:59:46 fetching corpus: 5350, signal 211589/242237 (executing program) 2022/09/21 06:59:47 fetching corpus: 5400, signal 212141/242561 (executing program) 2022/09/21 06:59:47 fetching corpus: 5450, signal 212801/242915 (executing program) 2022/09/21 06:59:47 fetching corpus: 5500, signal 213359/243239 (executing program) 2022/09/21 06:59:47 fetching corpus: 5550, signal 213950/243603 (executing program) 2022/09/21 06:59:47 fetching corpus: 5600, signal 214286/243909 (executing program) 2022/09/21 06:59:47 fetching corpus: 5650, signal 214969/244249 (executing program) 2022/09/21 06:59:47 fetching corpus: 5700, signal 215412/244554 (executing program) 2022/09/21 06:59:47 fetching corpus: 5750, signal 215808/244836 (executing program) 2022/09/21 06:59:47 fetching corpus: 5800, signal 216398/245127 (executing program) 2022/09/21 06:59:48 fetching corpus: 5850, signal 217011/245403 (executing program) 2022/09/21 06:59:48 fetching corpus: 5900, signal 217454/245654 (executing program) 2022/09/21 06:59:48 fetching corpus: 5950, signal 218015/245884 (executing program) 2022/09/21 06:59:48 fetching corpus: 6000, signal 219008/246133 (executing program) 2022/09/21 06:59:48 fetching corpus: 6050, signal 219631/246369 (executing program) 2022/09/21 06:59:48 fetching corpus: 6100, signal 220143/246431 (executing program) 2022/09/21 06:59:48 fetching corpus: 6150, signal 220973/246435 (executing program) 2022/09/21 06:59:48 fetching corpus: 6200, signal 221358/246436 (executing program) 2022/09/21 06:59:49 fetching corpus: 6250, signal 222104/246452 (executing program) 2022/09/21 06:59:49 fetching corpus: 6300, signal 222516/246457 (executing program) 2022/09/21 06:59:49 fetching corpus: 6350, signal 222774/246459 (executing program) 2022/09/21 06:59:49 fetching corpus: 6400, signal 223164/246462 (executing program) 2022/09/21 06:59:49 fetching corpus: 6450, signal 223734/246469 (executing program) 2022/09/21 06:59:49 fetching corpus: 6500, signal 224434/246469 (executing program) 2022/09/21 06:59:49 fetching corpus: 6550, signal 224895/246470 (executing program) 2022/09/21 06:59:49 fetching corpus: 6600, signal 225302/246472 (executing program) 2022/09/21 06:59:50 fetching corpus: 6650, signal 226000/246477 (executing program) 2022/09/21 06:59:50 fetching corpus: 6700, signal 226832/246490 (executing program) 2022/09/21 06:59:50 fetching corpus: 6750, signal 227199/246502 (executing program) 2022/09/21 06:59:50 fetching corpus: 6787, signal 227577/246502 (executing program) 2022/09/21 06:59:50 fetching corpus: 6787, signal 227577/246502 (executing program) 2022/09/21 06:59:52 starting 8 fuzzer processes 06:59:52 executing program 0: keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000000)='id_legacy\x00', &(0x7f0000000040)=@chain) r0 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc) r1 = request_key(&(0x7f0000000080)='.dead\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)='])]\x00', r0) r2 = add_key(&(0x7f00000001c0)='big_key\x00', &(0x7f0000000200)={'syz', 0x3}, &(0x7f0000000240)="aa7acd156684b9e8265083947e4c168232aad8b1289685cf51a7f001d6dc0329568416938cbbb4c36d5018296180ba7ed4acd65f2642a2f822c5dabead2df2c17a952811e299b32c", 0x48, r1) keyctl$read(0xb, 0x0, &(0x7f00000002c0)=""/155, 0x9b) r3 = add_key$keyring(&(0x7f0000000380), &(0x7f00000003c0)={'syz', 0x1}, 0x0, 0x0, r1) r4 = add_key$keyring(&(0x7f0000000400), &(0x7f0000000440)={'syz', 0x0}, 0x0, 0x0, r0) r5 = add_key$keyring(&(0x7f0000000480), &(0x7f00000004c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$instantiate(0xc, r2, &(0x7f0000000500)=@encrypted_load={'load ', 'default', 0x20, 'trusted:', '', 0x20, 0x5, 0x20, [0x32, 0x30]}, 0x2e, r2) r6 = add_key$fscrypt_v1(&(0x7f0000000600), &(0x7f0000000640)={'fscrypt:', @desc4}, &(0x7f0000000680)={0x0, "5f6550d58890f9a441ad8704eebde6f07c017202acdf0cfda5e8d04ca260f572dd0280e834343b5636365bb744182ffca871c0307a9305dec21d3e6e53eceec0", 0x3b}, 0x48, r5) add_key(&(0x7f0000000540)='id_resolver\x00', &(0x7f0000000580)={'syz', 0x3}, &(0x7f00000005c0)="c3475faceb7b7c66b7a50d2810bdd7a72c9dfeffd5b899d73c675a4f11b82b9d2d899e4801fc985a55", 0x29, r6) keyctl$read(0xb, r3, &(0x7f0000000700)=""/35, 0x23) add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x0}, 0x0, 0x0, r6) r7 = add_key(&(0x7f00000007c0)='.request_key_auth\x00', &(0x7f0000000800)={'syz', 0x1}, &(0x7f0000000840)="510a6351190dd1497e26f203f2b8529fb564df41375502f923fc89d4dac805ad8d9a485ac2ac1f20c25362c8bd22abfb638dce585b5a53afcd3cf2b2a8335f3096c352f8b3113d6e58a0d5cc87fec5c1f86c7dc5968909d5eb88c55adb7ae04dfc4b5b3c9f70d1c9bdb3bc31f7eb11c93f5374f833fdbc6e21e84b0c5a1b", 0x7e, r1) r8 = add_key$fscrypt_v1(&(0x7f00000008c0), &(0x7f0000000900)={'fscrypt:', @auto=[0x66, 0x30, 0x37, 0x65, 0x4fab9ecba061c9b, 0x61, 0x66, 0x5c, 0x61, 0x64, 0x34, 0x36, 0x37, 0x62, 0x39, 0x36]}, &(0x7f0000000940)={0x0, "78fb180a0653a1314a41818445a8982612b7c0ff361b56f52a39896ba4e42fd7af90b2e8542efec7d06dd0071fd7589d8b30c4cbd34e10a52e34ac8bf19b335d", 0x38}, 0x48, r5) add_key$keyring(&(0x7f00000009c0), &(0x7f0000000a00)={'syz', 0x2}, 0x0, 0x0, r4) r9 = request_key(&(0x7f0000000a40)='.request_key_auth\x00', &(0x7f0000000a80)={'syz', 0x3}, &(0x7f0000000ac0)='key_or_keyring:', r7) keyctl$link(0x8, r8, r9) r10 = add_key$fscrypt_v1(&(0x7f0000000b00), &(0x7f0000000b40)={'fscrypt:', @desc2}, &(0x7f0000000b80)={0x0, "8470d05eec4cee62088c0d0c17ee843ccc54fbdf82cdc31eb4503b7368a6563e3b650b0e2cb5a5aca3f0c24dedbcd01953950bef237fc65fe836d3075c004570", 0x10}, 0x48, r5) keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000000c00)={r10, 0xf4, 0x2c}, 0x0, &(0x7f0000000c40)="96f561e24c5b2e5526157bd4c653a605146cd5fcde93946553fe2ba8d3dec9ff1961b5bd5dc729272f05187d9d80a9a0a1df01e91dcfed9077e00c2ab8150313327ad41a5fec940c78564e11573e276d16f43a87082a9d02b6038b296590bfa1ff9b74f0de8d5b5a155f795ad64b93245d45ac8979f0b53fd73c3ad3a2235333b84cc30d8e55882da66198ab1cde77d6e9940b490dd3a43e8ace3cf268c6b186aaab36e0ff25a4bc3d92541d0d23473796c354669646638e634e2b8e411358367715cccb930b0c6db0b56b54cb2fc3e9e8ca9bac5639d67c915ba603e3a7c7d7ec018e5dbf1f6a24fd4d79bc494bb37dc986d05b", &(0x7f0000000d40)=""/44) 06:59:52 executing program 1: r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000000)) r1 = openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.pending_reads\x00', 0x101300, 0x10) ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r1, 0x8008f511, &(0x7f0000000080)) r2 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f00000000c0)) r3 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r3, 0x40189429, &(0x7f00000002c0)={0x1, 0x7fff, 0x6}) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0xfa312e7fceeefa70, &(0x7f0000000300)=0x1000, 0x4) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000340)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r4, 0x8983, &(0x7f0000000380)={0x6, 'vlan0\x00', {0x9}, 0x200}) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f00000003c0)={r2, 0x7ff, 0x0, 0xea}) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r4, 0x8982, &(0x7f0000000400)) r6 = syz_mount_image$iso9660(&(0x7f0000000440), &(0x7f0000000480)='./file0\x00', 0x9, 0x3, &(0x7f0000000700)=[{&(0x7f00000004c0)="399d0860e229cacdc572e6b3aaacf69ee0181abd517108a02a1c346ff7d8ddf315f5cf178d11ba90a37184ff9eeabbf5a9bd11c368651559e44767be2c9cadc05e9d33be49b23339af4a36094c9ef955a8b1b417bbb00758c0bd079b27cd8ce13d44363c6cfeee91f9e0367191330d7daef77cb64cb53e36ab23cb1daf887e6bd99a4955f695b8193ec5bdc05424c44ece66e270c032f639a3fc086dd627839403fddd0cffea19f91ef62641cabe262a481ca2c61b38dc1ab3a6cade95cb", 0xbe, 0x4}, {&(0x7f0000000580)="06f23cab6fefede4d0cdb9245765febf8d011a6ca3f84f8bd81ba802a96e9811f8649f606c540e091d93d5132f9baedb09dd4f1cee0781417946d9ae88fb33195534369d7284017088b4ae2ec5d317ad420fe2828fa1c4be1be26c267c94445bcfc51f28fa202bc0f9f626dacbb95b0b28ca08772d", 0x75, 0x2}, {&(0x7f0000000600)="d4a55a5181f66fc8d9801167f02363de08f528e6a43d4589e3d15da22bfab12027c874f78ff1ba139f9e2e06b651a196acc184c63aa182d85f4e9fb1e91b9d794ca6ef7312cb9c28798cdf37c4fb627b62a814957e373e5178b29316077ef33627e01bd92a2471ba01a1312d8e2c4ef249a5b9301fc0aa897c6118bbed39ae909549a73dc090073f3edf840ca5c0f99883a53cca30866e26317b2cb2b8ec872701c82cca514c1bf2d923cc6467df33ee3e9d879be96dae4354eddc0cf428c3a439736aeeaa7d0a63d9f2f9e422f2d09823bde7bf30669d8ac822a70c2956ad3405", 0xe1, 0xfffffffffffffc01}], 0x4, &(0x7f0000000780)={[{@hide}, {@mode={'mode', 0x3d, 0x6}}, {@check_relaxed}, {@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {@overriderock}], [{@obj_user}, {@measure}, {@hash}, {@smackfstransmute}, {@permit_directio}, {@subj_role={'subj_role', 0x3d, 'vlan0\x00'}}, {@audit}]}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000840)) setsockopt$sock_int(r5, 0x1, 0x6, &(0x7f0000000a40)=0x4, 0x4) sendmsg$AUDIT_TRIM(r0, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x10, 0x3f6, 0x300, 0x70bd2b, 0x25dfdbfb, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x48054}, 0x1) r7 = syz_mount_image$tmpfs(&(0x7f0000000b80), &(0x7f0000000bc0)='./file0\x00', 0x1, 0x1, &(0x7f0000000c40)=[{&(0x7f0000000c00)="9a94e2d89cd28349c534e3f2d0507706", 0x10, 0xa2}], 0x40, &(0x7f0000000c80)={[{@huge_advise}, {@mode={'mode', 0x3d, 0x3}}]}) fcntl$setstatus(r7, 0x4, 0x6400) ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, &(0x7f0000000d00)=0xe42c) 06:59:52 executing program 2: r0 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) preadv(r0, &(0x7f0000000040), 0x0, 0x81, 0x8) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000080)) r1 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000100)={0x9, {{0xa, 0x4e20, 0x1, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}}}, 0x88) sendmsg$NL80211_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x30, 0x0, 0x800, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x5, 0x70}}}}, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x259}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xc8}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x4800) fcntl$setpipe(r0, 0x407, 0x6) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000002c0), 0x680000, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r1) sendmsg$NL80211_CMD_DEL_TX_TS(r2, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x44, r3, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_TSID={0x5, 0xd2, 0xb}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xd}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xa}]}, 0x44}, 0x1, 0x0, 0x0, 0x24008005}, 0x4000000) recvmmsg(r1, &(0x7f0000004f80)=[{{&(0x7f0000000480)=@in={0x2, 0x0, @remote}, 0x80, &(0x7f0000000780)=[{&(0x7f0000000500)=""/121, 0x79}, {&(0x7f0000000580)=""/189, 0xbd}, {&(0x7f0000000640)=""/25, 0x19}, {&(0x7f0000000680)=""/252, 0xfc}], 0x4, &(0x7f00000007c0)=""/209, 0xd1}, 0x1f}, {{&(0x7f00000008c0)=@pppoe={0x18, 0x0, {0x0, @remote}}, 0x80, &(0x7f0000000c00)=[{&(0x7f0000000940)=""/102, 0x66}, {&(0x7f00000009c0)=""/187, 0xbb}, {&(0x7f0000000a80)=""/105, 0x69}, {&(0x7f0000000b00)=""/240, 0xf0}], 0x4, &(0x7f0000000c40)=""/110, 0x6e}, 0x200}, {{&(0x7f0000000cc0)=@caif, 0x80, &(0x7f0000000f40)=[{&(0x7f0000000d40)=""/204, 0xcc}, {&(0x7f0000000e40)=""/206, 0xce}], 0x2, &(0x7f0000000f80)=""/237, 0xed}, 0x10000}, {{0x0, 0x0, &(0x7f0000002180)=[{&(0x7f0000001080)=""/4096, 0x1000}, {&(0x7f0000002080)=""/24, 0x18}, {&(0x7f00000020c0)=""/182, 0xb6}], 0x3, &(0x7f00000021c0)=""/139, 0x8b}, 0x800}, {{0x0, 0x0, &(0x7f00000039c0)=[{&(0x7f0000002280)=""/57, 0x39}, {&(0x7f00000022c0)=""/218, 0xda}, {&(0x7f00000023c0)=""/194, 0xc2}, {&(0x7f00000024c0)=""/248, 0xf8}, {&(0x7f00000025c0)=""/152, 0x98}, {&(0x7f0000002680)=""/4096, 0x1000}, {&(0x7f0000003680)=""/231, 0xe7}, {&(0x7f0000003780)=""/178, 0xb2}, {&(0x7f0000003840)=""/227, 0xe3}, {&(0x7f0000003940)=""/97, 0x61}], 0xa, &(0x7f0000003a80)=""/209, 0xd1}, 0x762a9290}, {{0x0, 0x0, &(0x7f0000004e80)=[{&(0x7f0000003b80)=""/209, 0xd1}, {&(0x7f0000003c80)=""/145, 0x91}, {&(0x7f0000003d40)=""/68, 0x44}, {&(0x7f0000003dc0)=""/160, 0xa0}, {&(0x7f0000003e80)=""/4096, 0x1000}], 0x5, &(0x7f0000004f00)=""/74, 0x4a}, 0xb2}], 0x6, 0x10021, &(0x7f0000005100)) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000005140)={{{@in=@private, @in=@multicast2}}, {{@in6=@private1}, 0x0, @in=@multicast1}}, &(0x7f0000005240)=0xe8) r4 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000005280)={0x0, @remote}, &(0x7f00000052c0)=0xc) r5 = open(&(0x7f0000005300)='./file0\x00', 0x84802, 0x105) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r5, 0xc0189373, &(0x7f0000005340)={{0x1, 0x1, 0x18, r4, {0x3f}}, './file0\x00'}) preadv(r6, &(0x7f0000006600)=[{&(0x7f0000005380)=""/4096, 0x1000}, {&(0x7f0000006380)=""/27, 0x1b}, {&(0x7f00000063c0)=""/195, 0xc3}, {&(0x7f00000064c0)=""/164, 0xa4}, {&(0x7f0000006580)=""/91, 0x5b}], 0x5, 0x5f50, 0x100) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000006680)={{0x1, 0x1, 0x18, r1, {0x6}}, './file0\x00'}) ioctl$F2FS_IOC_GET_FEATURES(r7, 0x8004f50c, &(0x7f00000066c0)) ioctl$AUTOFS_IOC_CATATONIC(r6, 0x9362, 0x0) [ 70.115839] audit: type=1400 audit(1663743592.897:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 06:59:52 executing program 3: ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000000)={0x0, 0x8, 0x7}) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000000400)={r0, "39eda076251b00e29445850f1eb68dcf"}) ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) r1 = syz_io_uring_setup(0x5931, &(0x7f0000001400)={0x0, 0x803b, 0x8, 0x2, 0x2e5}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000001480), &(0x7f00000014c0)) fcntl$setownex(r1, 0xf, &(0x7f0000001500)={0x1}) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001540), 0x3b3180, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r2, 0xc04c5349, &(0x7f0000001580)={0xfff, 0x4, 0x577}) write$P9_RSETATTR(0xffffffffffffffff, &(0x7f0000001600)={0x7, 0x1b, 0x2}, 0x7) fcntl$setownex(r2, 0xf, &(0x7f0000001640)) recvmsg$unix(r2, &(0x7f0000002980)={0x0, 0x0, &(0x7f00000028c0)=[{&(0x7f0000001680)=""/151, 0x97}, {&(0x7f0000001740)=""/182, 0xb6}, {&(0x7f0000001800)=""/182, 0xb6}, {&(0x7f00000018c0)=""/4096, 0x1000}], 0x4, &(0x7f0000002900)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x10}}], 0x78}, 0x12000) readv(r3, &(0x7f0000002a40)=[{&(0x7f00000029c0)=""/113, 0x71}], 0x1) r6 = open_tree(0xffffffffffffff9c, &(0x7f0000002a80)='./file0\x00', 0x801) ioctl$BLKDISCARD(r6, 0x1277, &(0x7f0000002ac0)=0x80) pread64(r6, &(0x7f0000002b00)=""/94, 0x5e, 0x5) sendmsg$AUDIT_TRIM(r5, &(0x7f0000002c40)={&(0x7f0000002b80)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000002c00)={&(0x7f0000002bc0)={0x10, 0x3f6, 0x800, 0x70bd26, 0x25dfdbfe, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x480d4}, 0x24000880) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000004, 0x50, r4, 0x0) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r1, 0x80045300, &(0x7f0000002c80)) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r4, 0xc018937a, &(0x7f0000002cc0)={{0x1, 0x1, 0x18, r6, {0x7c}}, './file0\x00'}) syz_io_uring_setup(0x273d, &(0x7f0000002d00)={0x0, 0xc6a3, 0x0, 0x1, 0xdd, 0x0, r7}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000002d80), &(0x7f0000002dc0)) ioctl$IOC_PR_RESERVE(0xffffffffffffffff, 0x401070c9, &(0x7f0000002e40)={0xfff, 0x101, 0x1}) 06:59:52 executing program 4: r0 = syz_open_dev$tty1(0xc, 0x4, 0x4) fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000000)) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x88502, 0x0) ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000080)={0x0, {}, 0x0, {}, 0x0, 0x4, 0xf, 0x9, "099e108986b621c0be55b38b9f892a62eca35ae4b8028626b49dc91cee53a53e69a50846f60501f2bd810802499d085b5a145a6d190ec255c27ad497de193a1e", "0e8849172ce003e673cd40ca5bb910b906ce35842891655ff5249165b441bfe1", [0x5decd08d, 0x80000000]}) r2 = signalfd4(r0, &(0x7f0000000140)={[0x8]}, 0x8, 0x800) ioctl$TCSETSW2(r2, 0x402c542c, &(0x7f0000000180)={0x5, 0x0, 0x3ff, 0x3ff, 0x51, "dc3c8c725893c0325ac748d0aabebd01fe562f"}) ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f00000001c0)={'veth0_to_batadv\x00'}) r3 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$INCFS_IOC_PERMIT_FILL(r3, 0x40046721, &(0x7f0000000600)={r0}) r4 = pidfd_getfd(r2, r2, 0x0) ioctl$FS_IOC_FIEMAP(r4, 0xc020660b, &(0x7f0000000640)={0x401, 0x80, 0x1, 0x8, 0x5, [{0x187, 0x10001, 0x5, '\x00', 0x100}, {0x8, 0x47, 0x4, '\x00', 0x20d}, {0x10001, 0x5, 0x100, '\x00', 0x200}, {0x6, 0x4, 0x101, '\x00', 0x1001}, {0x2, 0x2, 0x4773, '\x00', 0x400}]}) write$P9_RFSYNC(r2, &(0x7f0000000780)={0x7, 0x33, 0x2}, 0x7) ioctl$BLKBSZGET(r1, 0x80081270, &(0x7f00000007c0)) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000800)={0x0, 'nr0\x00', {0x2}, 0x2}) r5 = syz_mount_image$vfat(&(0x7f0000000840), &(0x7f0000000880)='./file0\x00', 0x6, 0x4, &(0x7f0000000b00)=[{&(0x7f00000008c0)="424dc29f7a2dd7eed70c5472dccd406ea2cda2f2d597d89f7d19b936157f1d7d40d4e35b60ab6fdce3e578d6927166870ad6386fa0e34f9091273a60468ed43aaed4a5520d23c4c9ff1f0f41a451c10f0fad099ac6b53e5a4957dba10cef9c0ad74e1c7d1064e83dda4281b0adfc586acd19f63a44fa6c6d19b7ca4b1c7d14a8a74ae9374f3773f4410f8916a58611f7ca3d8021fe8415e2d55f3d17dea0885998230f0266d4c7658dd61b55820fc821cd796cedc46d4a72784c6f93b6643a19c34f1fa7e90b38f57a12bc82fed28b0bb2bb4d1a9671714e671e8760c819bd1881", 0xe1, 0x57}, {&(0x7f00000009c0)="f69f5ad6803944745932afa85ac5765c64f739a3add30465edf8293ec003512f8c400d7597c93a", 0x27, 0x7ff}, {&(0x7f0000000a00)="ca567032fd12da462e598b992bd69e233e3600a0ec56cad8ae2f65739e6a3d469f8815aae49631885bfa5100691c607bf9d416845537f6d11a1a25596e3950bb73c410105db0e98fe8f49217d2d0e4ea281301bfa18a3d8e8e0eb563ff9295ce499415e0790d462861a943bada90f45f0e556aa797a0e7156cad7d067548be710ce226f6d3282a1be7b461b78194762fe4a30c849b", 0x95, 0x46aaae1e}, {&(0x7f0000000ac0)="c359593950428edd5c7ab6d7a2493b3d42380996ee96ae5560ed74d5", 0x1c, 0x12}], 0x0, &(0x7f0000000b80)={[{@shortname_win95}, {@utf8no}, {@rodir}, {@utf8no}, {@numtail}, {@shortname_win95}, {@utf8}, {@shortname_winnt}], [{@subj_type={'subj_type', 0x3d, '/dev/nvram\x00'}}, {@hash}]}) flock(r5, 0xc) ioctl$LOOP_CLR_FD(r4, 0x4c01) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000c00)='/sys/module/uhci_hcd', 0x40002, 0xa0) getsockopt$IP_SET_OP_GET_BYINDEX(r6, 0x1, 0x53, &(0x7f0000000c40)={0x7, 0x7, 0x1}, &(0x7f0000000c80)=0x28) openat(0xffffffffffffff9c, &(0x7f0000000cc0)='./file0/file0\x00', 0x80, 0x0) 06:59:52 executing program 6: ioctl$VT_RELDISP(0xffffffffffffffff, 0x5605) r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xff) ioctl$TIOCL_BLANKSCREEN(r0, 0x541c, &(0x7f0000000000)) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$KDGKBENT(r1, 0x4b46, &(0x7f0000000080)={0xfd, 0x24, 0x2}) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0x80}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000140)={'ipvlan0\x00'}) fallocate(r2, 0xc, 0x6c, 0x10001) r4 = signalfd(r3, &(0x7f0000000180)={[0x100000001]}, 0x8) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'}) clock_gettime(0x0, &(0x7f0000000280)={0x0, 0x0}) ppoll(&(0x7f0000000200)=[{r1, 0xeccf7a222385e292}, {r4}, {r5, 0x400}, {r0, 0x1004}, {r0, 0x88}, {r3, 0x301}, {r1, 0x2003}, {r0, 0x8018}, {r2, 0x2}], 0x9, &(0x7f00000002c0)={r6, r7+10000000}, &(0x7f0000000300)={[0x1]}, 0x8) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x14080, 0x0) setxattr$security_evm(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), &(0x7f0000000400)=@ng={0x4, 0x11, "b3d7eed041835c16"}, 0xa, 0x1) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000440)={{0x1, 0x1, 0x18, r8, {0x80}}, './file0\x00'}) ioctl$FIONREAD(r9, 0x541b, &(0x7f0000000480)) read(r9, &(0x7f00000004c0)=""/4096, 0x1000) r10 = signalfd4(r1, &(0x7f00000014c0)={[0x2]}, 0x8, 0x80800) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r10, 0xc018937a, &(0x7f0000001500)={{0x1, 0x1, 0x18, r1, {0x8}}, './file0\x00'}) 06:59:52 executing program 5: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r0, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x5}]}, 0x1c}}, 0x4004011) r1 = accept4(0xffffffffffffffff, &(0x7f0000001240)=@xdp={0x2c, 0x0, 0x0}, &(0x7f00000012c0)=0x80, 0x0) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(r1, &(0x7f0000001400)={&(0x7f0000001300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000013c0)={&(0x7f0000001380)={0x3c, r3, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xffffffff}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x1) sendmsg$WG_CMD_GET_DEVICE(r1, &(0x7f0000001580)={&(0x7f0000001440)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001540)={&(0x7f0000001480)={0xac, 0x0, 0x800, 0x70bd2b, 0x25dfdbfb, {}, [@WGDEVICE_A_FWMARK={0x8, 0x7, 0x4}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x1eb}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}]}, 0xac}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000) pipe(&(0x7f00000015c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000001780)={'syztnl2\x00', &(0x7f00000016c0)={'gre0\x00', r2, 0x7800, 0x8020, 0x8000, 0x1, {{0x20, 0x4, 0x0, 0x19, 0x80, 0x68, 0x0, 0x7, 0x4, 0x0, @local, @loopback, {[@timestamp={0x44, 0x28, 0xc3, 0x0, 0x5, [0xbe8, 0x7e9, 0xfffffffe, 0x9, 0x6, 0x4, 0x2, 0xa323, 0x4]}, @rr={0x7, 0xf, 0xd8, [@initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102, @local]}, @cipso={0x86, 0x31, 0x3, [{0x5, 0x5, "45e0ee"}, {0x7, 0xc, "dc12304e611504639651"}, {0x5, 0x2}, {0x2, 0x6, "830cd782"}, {0x5, 0xb, "28571862123ae29c33"}, {0x1, 0x7, "0454232ddd"}]}, @end]}}}}}) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000001880)={'syztnl0\x00', &(0x7f00000017c0)={'gre0\x00', r2, 0x80, 0x700, 0x1, 0x8, {{0x27, 0x4, 0x1, 0x4, 0x9c, 0x65, 0x0, 0x8, 0x29, 0x0, @broadcast, @broadcast, {[@cipso={0x86, 0x4d, 0x3, [{0x1, 0x2}, {0x1, 0xd, "ef6662d51faba487d1eb0a"}, {0x1, 0xc, "00d7c095ff6f75a9334a"}, {0x0, 0x7, "3c040e01ce"}, {0x2, 0x7, "7da6aef62d"}, {0x2, 0xb, "c416a651319e154bae"}, {0x5, 0x8, "dda666bd8a23"}, {0x2, 0xb, "58a5feff5a255e465e"}]}, @rr={0x7, 0xf, 0xac, [@rand_addr=0x64010100, @empty, @local]}, @ssrr={0x89, 0xb, 0x32, [@multicast1, @private=0xa010102]}, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x1c, 0xffffffffffffffff, [{0x0, 0x7, "e540998e15"}, {0xa, 0xf, "85d5129bd4555c337db6f2f31f"}]}]}}}}}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000002180)={'syztnl1\x00', &(0x7f0000002100)={'syztnl0\x00', r2, 0x29, 0x9, 0x9, 0x7, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}, @remote, 0x1, 0x8, 0x5, 0x401}}) sendmsg$ETHTOOL_MSG_FEATURES_GET(r5, &(0x7f0000002340)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000002300)={&(0x7f00000021c0)={0x108, 0x0, 0x200, 0xfffffeff, 0x25dfdbfc, {}, [@HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @HEADER={0x4}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x10}, 0x40088c0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000001, 0x40010, r5, 0x0) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000023c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000002400)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000002580)={&(0x7f0000002380)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000002540)={&(0x7f0000002440)={0xd8, r9, 0x400, 0x70bd25, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x5, 0x32}}}}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x16}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r10}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x35}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x9, 0x2c}}, @NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_CONFIRM_TIMEOUT={0x6, 0x2, 0xcf}]}, @NL80211_ATTR_MESH_CONFIG={0x44, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_TTL={0x5, 0x6, 0x2}, @NL80211_MESHCONF_ELEMENT_TTL={0x5, 0xf, 0x9}, @NL80211_MESHCONF_CONNECTED_TO_GATE={0x5}, @NL80211_MESHCONF_TTL={0x5, 0x6, 0x39}, @NL80211_MESHCONF_GATE_ANNOUNCEMENTS={0x5, 0x11, 0x1}, @NL80211_MESHCONF_AWAKE_WINDOW={0x6, 0x1b, 0xe09}, @NL80211_MESHCONF_CONNECTED_TO_GATE={0x5, 0x1d, 0x1}, @NL80211_MESHCONF_FORWARDING={0x5, 0x13, 0x1}]}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_MESH_CONFIG={0x34, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x2}, @NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xffffffffffffff5d}, @NL80211_MESHCONF_CONFIRM_TIMEOUT={0x6, 0x2, 0xd1}, @NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL={0x6, 0xc, 0x3}, @NL80211_MESHCONF_CONNECTED_TO_GATE={0x5}, @NL80211_MESHCONF_PLINK_TIMEOUT={0x8, 0x1c, 0x5}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x5}]}, 0xd8}, 0x1, 0x0, 0x0, 0x4081}, 0x8000) r11 = open(&(0x7f00000025c0)='./file0\x00', 0x602000, 0xfa) r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002640), r1) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r11, &(0x7f0000002780)={&(0x7f0000002600), 0xc, &(0x7f0000002740)={&(0x7f0000002680)={0xa0, r12, 0x200, 0x70bd28, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x1ff, 0x4e}}}}, [@NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x1}, @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x3}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x3f}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33d}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x1}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x7}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2c}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1590}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x6}]}, 0xa0}, 0x1, 0x0, 0x0, 0x1}, 0x4004804) r13 = syz_genetlink_get_family_id$ipvs(&(0x7f0000002800), r5) sendmsg$IPVS_CMD_NEW_DAEMON(r11, &(0x7f0000002980)={&(0x7f00000027c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000002940)={&(0x7f0000002840)={0xec, r13, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x8}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xf8}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @empty}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x47}]}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'geneve0\x00'}]}, @IPVS_CMD_ATTR_DEST={0x34, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@rand_addr=' \x01\x00'}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xfeb9}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@empty}]}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x7}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x800}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x8, 0x2}}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x48090}, 0x2400c014) 06:59:52 executing program 7: r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000040)={r2, 0x200, 0x3f, 0x7}) syncfs(r0) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$AUTOFS_IOC_SETTIMEOUT(r4, 0x80049367, &(0x7f0000000080)=0xb9) fallocate(r3, 0x68, 0x401, 0x1) ioctl$HIDIOCGRAWNAME(r2, 0x80404804, &(0x7f00000000c0)) r5 = inotify_init() fcntl$dupfd(r1, 0x406, r5) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r0) sendmsg$NL80211_CMD_GET_STATION(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x80, r6, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x76}}}}, [@NL80211_ATTR_STA_WME={0x24, 0x81, [@NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x9}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x1f}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x6}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x8}]}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x9}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x4}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x7fff, 0xffff0000}}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0xab}]}, 0x80}, 0x1, 0x0, 0x0, 0x81}, 0x8010) io_uring_register$IORING_REGISTER_FILES_UPDATE(r2, 0x6, &(0x7f00000002c0)={0x2, 0x0, &(0x7f0000000280)=[r0]}, 0x1) openat(r2, &(0x7f0000000300)='./file0\x00', 0x421000, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) fcntl$getown(r2, 0x9) r7 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$FS_IOC_SETVERSION(r7, 0x40087602, &(0x7f0000000340)=0x5) [ 71.301121] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 71.303462] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 71.305384] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 71.308376] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 71.310376] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 71.319595] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 71.326193] Bluetooth: hci0: HCI_REQ-0x0c1a [ 71.350140] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 71.351687] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 71.357236] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 71.363040] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 71.366190] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 71.367496] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 71.392166] Bluetooth: hci1: HCI_REQ-0x0c1a [ 71.427269] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 71.429364] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 71.435217] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 71.436623] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 71.442851] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 71.444254] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 71.445788] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 71.447081] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 71.452254] Bluetooth: hci4: HCI_REQ-0x0c1a [ 71.461840] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 71.464094] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 71.490896] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 71.491925] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 71.493930] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 71.495704] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 71.497851] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 71.499614] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 71.503446] Bluetooth: hci2: HCI_REQ-0x0c1a [ 71.504971] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 71.506269] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 71.519304] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 71.519357] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 71.522487] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 71.522829] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 71.524777] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 71.525084] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 71.528536] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 71.530047] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 71.531329] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 71.538324] Bluetooth: hci6: HCI_REQ-0x0c1a [ 71.546324] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 71.549015] Bluetooth: hci3: HCI_REQ-0x0c1a [ 71.549837] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 71.551223] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 71.558279] Bluetooth: hci7: HCI_REQ-0x0c1a [ 71.607518] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 71.609889] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 71.612501] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 71.615303] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 71.617104] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 71.618322] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 71.622774] Bluetooth: hci5: HCI_REQ-0x0c1a [ 73.389048] Bluetooth: hci0: command 0x0409 tx timeout [ 73.452695] Bluetooth: hci1: command 0x0409 tx timeout [ 73.515621] Bluetooth: hci2: command 0x0409 tx timeout [ 73.516213] Bluetooth: hci4: command 0x0409 tx timeout [ 73.579659] Bluetooth: hci7: command 0x0409 tx timeout [ 73.580272] Bluetooth: hci3: command 0x0409 tx timeout [ 73.581176] Bluetooth: hci6: command 0x0409 tx timeout [ 73.644373] Bluetooth: hci5: command 0x0409 tx timeout [ 75.435686] Bluetooth: hci0: command 0x041b tx timeout [ 75.499659] Bluetooth: hci1: command 0x041b tx timeout [ 75.563739] Bluetooth: hci4: command 0x041b tx timeout [ 75.564289] Bluetooth: hci2: command 0x041b tx timeout [ 75.627702] Bluetooth: hci6: command 0x041b tx timeout [ 75.628239] Bluetooth: hci3: command 0x041b tx timeout [ 75.628770] Bluetooth: hci7: command 0x041b tx timeout [ 75.691654] Bluetooth: hci5: command 0x041b tx timeout [ 77.483673] Bluetooth: hci0: command 0x040f tx timeout [ 77.547611] Bluetooth: hci1: command 0x040f tx timeout [ 77.611704] Bluetooth: hci2: command 0x040f tx timeout [ 77.612153] Bluetooth: hci4: command 0x040f tx timeout [ 77.675657] Bluetooth: hci7: command 0x040f tx timeout [ 77.676103] Bluetooth: hci3: command 0x040f tx timeout [ 77.676519] Bluetooth: hci6: command 0x040f tx timeout [ 77.739590] Bluetooth: hci5: command 0x040f tx timeout [ 79.531595] Bluetooth: hci0: command 0x0419 tx timeout [ 79.595616] Bluetooth: hci1: command 0x0419 tx timeout [ 79.659616] Bluetooth: hci4: command 0x0419 tx timeout [ 79.660049] Bluetooth: hci2: command 0x0419 tx timeout [ 79.723660] Bluetooth: hci6: command 0x0419 tx timeout [ 79.724098] Bluetooth: hci3: command 0x0419 tx timeout [ 79.724489] Bluetooth: hci7: command 0x0419 tx timeout [ 79.787615] Bluetooth: hci5: command 0x0419 tx timeout 07:00:48 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) pwrite64(r2, &(0x7f00000000c0)='9', 0x1, 0x8040000) setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000540)={@in6={{0xa, 0x4e20, 0xffff, @mcast2, 0x4}}, 0x0, 0x0, 0x15, 0x0, "b25da62d685a38083e45ab1950001ca46105939b4b3d83bd945bed03b30b62897693132cb6e12788b1d58f9b2fff886055bea488ee0e2918a8c961a2684924dfa9841132b1916476e31d06d76d34a918"}, 0xd8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r5 = dup(r4) write$bt_hci(r5, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) sendfile(r2, r3, 0x0, 0xffff) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r4, {0x8000}}, './file1\x00'}) openat(r6, 0x0, 0x101003, 0xc2) r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x800, 0x0) ioctl$sock_bt_hci(r7, 0x400448dd, &(0x7f00000001c0)="a5869c3b7f4357c993415cf59075b464296c303be69409e85f8028a8b35fd94e7b3117e177b7e81bbe6afd8371745da35ce6ce47e327cd7280d860457bfabd4f8a15ab1adebf4c0ad9a8596470d933c47bfddb911284c53e66c5baff9e8c") r8 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0) ioctl$SG_EMULATED_HOST(r8, 0x5390, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r8, 0xc0189375, 0xfffffffffffffffc) [ 125.560402] audit: type=1400 audit(1663743648.342:7): avc: denied { open } for pid=3870 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.561932] audit: type=1400 audit(1663743648.342:8): avc: denied { kernel } for pid=3870 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.579266] ------------[ cut here ]------------ [ 125.579287] [ 125.579290] ====================================================== [ 125.579294] WARNING: possible circular locking dependency detected [ 125.579298] 6.0.0-rc6-next-20220920 #1 Not tainted [ 125.579305] ------------------------------------------------------ [ 125.579308] syz-executor.3/3871 is trying to acquire lock: [ 125.579315] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 125.579360] [ 125.579360] but task is already holding lock: [ 125.579363] ffff88800dad4c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 125.579392] [ 125.579392] which lock already depends on the new lock. [ 125.579392] [ 125.579395] [ 125.579395] the existing dependency chain (in reverse order) is: [ 125.579398] [ 125.579398] -> #3 (&ctx->lock){....}-{2:2}: [ 125.579412] _raw_spin_lock+0x2a/0x40 [ 125.579433] __perf_event_task_sched_out+0x53b/0x18d0 [ 125.579445] __schedule+0xedd/0x2470 [ 125.579458] schedule+0xda/0x1b0 [ 125.579471] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.579483] syscall_exit_to_user_mode+0x19/0x40 [ 125.579494] do_syscall_64+0x48/0x90 [ 125.579510] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.579529] [ 125.579529] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 125.579546] _raw_spin_lock_nested+0x30/0x40 [ 125.579562] raw_spin_rq_lock_nested+0x1e/0x30 [ 125.579576] task_fork_fair+0x63/0x4d0 [ 125.579593] sched_cgroup_fork+0x3d0/0x540 [ 125.579607] copy_process+0x4183/0x6e20 [ 125.579618] kernel_clone+0xe7/0x890 [ 125.579628] user_mode_thread+0xad/0xf0 [ 125.579638] rest_init+0x24/0x250 [ 125.579648] arch_call_rest_init+0xf/0x14 [ 125.579663] start_kernel+0x4c1/0x4e6 [ 125.579675] secondary_startup_64_no_verify+0xe0/0xeb [ 125.579690] [ 125.579690] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 125.579703] _raw_spin_lock_irqsave+0x39/0x60 [ 125.579720] try_to_wake_up+0xab/0x1930 [ 125.579733] up+0x75/0xb0 [ 125.579745] __up_console_sem+0x6e/0x80 [ 125.579761] console_unlock+0x46a/0x590 [ 125.579777] do_con_write+0xc05/0x1d50 [ 125.579789] con_write+0x21/0x40 [ 125.579799] n_tty_write+0x4d4/0xfe0 [ 125.579813] file_tty_write.constprop.0+0x49c/0x8f0 [ 125.579825] vfs_write+0x9c3/0xd90 [ 125.579844] ksys_write+0x127/0x250 [ 125.579864] do_syscall_64+0x3b/0x90 [ 125.579879] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.579897] [ 125.579897] -> #0 ((console_sem).lock){....}-{2:2}: [ 125.579911] __lock_acquire+0x2a02/0x5e70 [ 125.579928] lock_acquire+0x1a2/0x530 [ 125.579943] _raw_spin_lock_irqsave+0x39/0x60 [ 125.579960] down_trylock+0xe/0x70 [ 125.579973] __down_trylock_console_sem+0x3b/0xd0 [ 125.579989] vprintk_emit+0x16b/0x560 [ 125.580005] vprintk+0x84/0xa0 [ 125.580021] _printk+0xba/0xf1 [ 125.580031] report_bug.cold+0x72/0xab [ 125.580047] handle_bug+0x3c/0x70 [ 125.580062] exc_invalid_op+0x14/0x50 [ 125.580077] asm_exc_invalid_op+0x16/0x20 [ 125.580087] group_sched_out.part.0+0x2c7/0x460 [ 125.580099] ctx_sched_out+0x8f1/0xc10 [ 125.580109] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.580121] __schedule+0xedd/0x2470 [ 125.580133] schedule+0xda/0x1b0 [ 125.580145] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.580156] syscall_exit_to_user_mode+0x19/0x40 [ 125.580167] do_syscall_64+0x48/0x90 [ 125.580182] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.580201] [ 125.580201] other info that might help us debug this: [ 125.580201] [ 125.580203] Chain exists of: [ 125.580203] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 125.580203] [ 125.580218] Possible unsafe locking scenario: [ 125.580218] [ 125.580221] CPU0 CPU1 [ 125.580223] ---- ---- [ 125.580226] lock(&ctx->lock); [ 125.580232] lock(&rq->__lock); [ 125.580238] lock(&ctx->lock); [ 125.580244] lock((console_sem).lock); [ 125.580250] [ 125.580250] *** DEADLOCK *** [ 125.580250] [ 125.580252] 2 locks held by syz-executor.3/3871: [ 125.580259] #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 125.580287] #1: ffff88800dad4c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 125.580314] [ 125.580314] stack backtrace: [ 125.580317] CPU: 1 PID: 3871 Comm: syz-executor.3 Not tainted 6.0.0-rc6-next-20220920 #1 [ 125.580330] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 125.580338] Call Trace: [ 125.580342] [ 125.580346] dump_stack_lvl+0x8b/0xb3 [ 125.580363] check_noncircular+0x263/0x2e0 [ 125.580379] ? format_decode+0x26c/0xb50 [ 125.580395] ? print_circular_bug+0x450/0x450 [ 125.580412] ? enable_ptr_key_workfn+0x20/0x20 [ 125.580428] ? format_decode+0x26c/0xb50 [ 125.580443] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 125.580461] __lock_acquire+0x2a02/0x5e70 [ 125.580482] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 125.580504] lock_acquire+0x1a2/0x530 [ 125.580521] ? down_trylock+0xe/0x70 [ 125.580535] ? lock_release+0x750/0x750 [ 125.580555] ? vprintk+0x84/0xa0 [ 125.580573] _raw_spin_lock_irqsave+0x39/0x60 [ 125.580591] ? down_trylock+0xe/0x70 [ 125.580604] down_trylock+0xe/0x70 [ 125.580617] ? vprintk+0x84/0xa0 [ 125.580634] __down_trylock_console_sem+0x3b/0xd0 [ 125.580654] vprintk_emit+0x16b/0x560 [ 125.580675] vprintk+0x84/0xa0 [ 125.580692] _printk+0xba/0xf1 [ 125.580702] ? record_print_text.cold+0x16/0x16 [ 125.580717] ? report_bug.cold+0x66/0xab [ 125.580733] ? group_sched_out.part.0+0x2c7/0x460 [ 125.580745] report_bug.cold+0x72/0xab [ 125.580762] handle_bug+0x3c/0x70 [ 125.580778] exc_invalid_op+0x14/0x50 [ 125.580794] asm_exc_invalid_op+0x16/0x20 [ 125.580805] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 125.580819] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 0b 13 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 125.580831] RSP: 0018:ffff8880402d7c48 EFLAGS: 00010006 [ 125.580840] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 125.580847] RDX: ffff88801a40d040 RSI: ffffffff815662c7 RDI: 0000000000000005 [ 125.580855] RBP: ffff888018120000 R08: 0000000000000005 R09: 0000000000000001 [ 125.580863] R10: 0000000000000000 R11: ffffffff865ae05b R12: ffff88800dad4c00 [ 125.580871] R13: ffff88806cf3d140 R14: ffffffff8547d020 R15: 0000000000000002 [ 125.580882] ? group_sched_out.part.0+0x2c7/0x460 [ 125.580895] ? group_sched_out.part.0+0x2c7/0x460 [ 125.580908] ctx_sched_out+0x8f1/0xc10 [ 125.580921] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.580937] ? lock_is_held_type+0xd7/0x130 [ 125.580949] ? __perf_cgroup_move+0x160/0x160 [ 125.580961] ? set_next_entity+0x304/0x550 [ 125.580978] ? update_curr+0x267/0x740 [ 125.580996] ? lock_is_held_type+0xd7/0x130 [ 125.581009] __schedule+0xedd/0x2470 [ 125.581024] ? io_schedule_timeout+0x150/0x150 [ 125.581039] ? rcu_read_lock_sched_held+0x3e/0x80 [ 125.581060] schedule+0xda/0x1b0 [ 125.581073] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.581085] syscall_exit_to_user_mode+0x19/0x40 [ 125.581097] do_syscall_64+0x48/0x90 [ 125.581113] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.581132] RIP: 0033:0x7fa6dd998b19 [ 125.581141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.581152] RSP: 002b:00007fa6daf0e218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.581163] RAX: 0000000000000001 RBX: 00007fa6ddaabf68 RCX: 00007fa6dd998b19 [ 125.581171] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa6ddaabf6c [ 125.581178] RBP: 00007fa6ddaabf60 R08: 000000000000000e R09: 0000000000000000 [ 125.581185] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fa6ddaabf6c [ 125.581192] R13: 00007ffc2488e8ef R14: 00007fa6daf0e300 R15: 0000000000022000 [ 125.581205] [ 125.637189] WARNING: CPU: 1 PID: 3871 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 125.637869] Modules linked in: [ 125.638112] CPU: 1 PID: 3871 Comm: syz-executor.3 Not tainted 6.0.0-rc6-next-20220920 #1 [ 125.638700] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 125.639531] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 125.639936] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 0b 13 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 125.641269] RSP: 0018:ffff8880402d7c48 EFLAGS: 00010006 [ 125.641662] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 125.642189] RDX: ffff88801a40d040 RSI: ffffffff815662c7 RDI: 0000000000000005 [ 125.642717] RBP: ffff888018120000 R08: 0000000000000005 R09: 0000000000000001 [ 125.643246] R10: 0000000000000000 R11: ffffffff865ae05b R12: ffff88800dad4c00 [ 125.643776] R13: ffff88806cf3d140 R14: ffffffff8547d020 R15: 0000000000000002 [ 125.644309] FS: 00007fa6daf0e700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 125.644903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 125.645326] CR2: 00007f11ba3238e0 CR3: 000000001d9da000 CR4: 0000000000350ee0 [ 125.645852] Call Trace: [ 125.646048] [ 125.646225] ctx_sched_out+0x8f1/0xc10 [ 125.646519] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.646909] ? lock_is_held_type+0xd7/0x130 [ 125.647229] ? __perf_cgroup_move+0x160/0x160 [ 125.647582] ? set_next_entity+0x304/0x550 [ 125.647905] ? update_curr+0x267/0x740 [ 125.648204] ? lock_is_held_type+0xd7/0x130 [ 125.648533] __schedule+0xedd/0x2470 [ 125.648821] ? io_schedule_timeout+0x150/0x150 [ 125.649165] ? rcu_read_lock_sched_held+0x3e/0x80 [ 125.649537] schedule+0xda/0x1b0 [ 125.649803] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.650170] syscall_exit_to_user_mode+0x19/0x40 [ 125.650524] do_syscall_64+0x48/0x90 [ 125.650809] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.651199] RIP: 0033:0x7fa6dd998b19 [ 125.651484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.652817] RSP: 002b:00007fa6daf0e218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.653385] RAX: 0000000000000001 RBX: 00007fa6ddaabf68 RCX: 00007fa6dd998b19 [ 125.653920] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa6ddaabf6c [ 125.654454] RBP: 00007fa6ddaabf60 R08: 000000000000000e R09: 0000000000000000 [ 125.654977] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fa6ddaabf6c [ 125.655515] R13: 00007ffc2488e8ef R14: 00007fa6daf0e300 R15: 0000000000022000 [ 125.656054] [ 125.656233] irq event stamp: 632 [ 125.656482] hardirqs last enabled at (631): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 125.657169] hardirqs last disabled at (632): [] __schedule+0x1225/0x2470 [ 125.657776] softirqs last enabled at (394): [] __irq_exit_rcu+0x11b/0x180 [ 125.658396] softirqs last disabled at (385): [] __irq_exit_rcu+0x11b/0x180 [ 125.659029] ---[ end trace 0000000000000000 ]--- 07:00:48 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0) r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00') linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)='net/packet\x00') r2 = syz_mount_image$nfs(&(0x7f0000000440), &(0x7f0000000480)='./file0\x00', 0x6, 0x2, &(0x7f0000000600)=[{&(0x7f00000004c0)="15a0830dc76459036a3ff1d20cd405b87d118b78ce5c07e4d3e14294cea314bebd9c9a2981e401e4087c2902fe9e5ecdac447df25d915df1db58f6ce6d11d97302bc062846460f4f3faa52fa4155806ebc0b50e88e8f5d1de9571de2f416747fca669e65ee6d49ceb93f7469209e05e769f52ce956747a6fada737f504e2866ae813c093a7e11f52218b9d5089d8481eb4437aad043ebf6827ea508a0942e984c3a88d35120ee48df27c8f5dcd6acff07016f058af14617ce719d9bac3381d3764ff21ba6f015753d8f4fcc6377e3625cea85e20376b101e757169782c39d45499942b90414e5e3e428139302d6b824fe324099312abf7bffe45", 0xfa, 0x8}, {&(0x7f00000005c0)="0b61b120f1326251b3666926168fcf2333", 0x11, 0x4}], 0x128000, &(0x7f0000000640)={[{'m^\x00'}, {'tmpfs\x00'}, {}, {',%'}], [{@smackfsfloor={'smackfsfloor', 0x3d, '&)\x94'}}]}) r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000780), &(0x7f00000007c0)=0xc) symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00') linkat(r3, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file1\x00', 0x1000) renameat(r2, &(0x7f0000000680)='./file0\x00', r3, &(0x7f0000000740)='./file0\x00') renameat(r1, &(0x7f00000003c0)='./file1\x00', r0, &(0x7f0000000400)='./file0\x00') lseek(r0, 0x3, 0x3) execveat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000140)='tmpfs\x00', &(0x7f0000000180)='tmpfs\x00', &(0x7f00000001c0)='tmpfs\x00', &(0x7f0000000200)='m^\x00'], &(0x7f0000000340)=[&(0x7f0000000280)='\x00', &(0x7f00000002c0)='!&\x00', &(0x7f0000000300)='$^!*$:,,(.\x00'], 0x100) truncate(&(0x7f0000000000)='./file1\x00', 0x0) 07:00:48 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0) r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00') linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)='net/packet\x00') r2 = syz_mount_image$nfs(&(0x7f0000000440), &(0x7f0000000480)='./file0\x00', 0x6, 0x2, &(0x7f0000000600)=[{&(0x7f00000004c0)="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", 0xfa, 0x8}, {&(0x7f00000005c0)="0b61b120f1326251b3666926168fcf2333", 0x11, 0x4}], 0x128000, &(0x7f0000000640)={[{'m^\x00'}, {'tmpfs\x00'}, {}, {',%'}], [{@smackfsfloor={'smackfsfloor', 0x3d, '&)\x94'}}]}) r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000780), &(0x7f00000007c0)=0xc) symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00') linkat(r3, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file1\x00', 0x1000) renameat(r2, &(0x7f0000000680)='./file0\x00', r3, &(0x7f0000000740)='./file0\x00') renameat(r1, &(0x7f00000003c0)='./file1\x00', r0, &(0x7f0000000400)='./file0\x00') lseek(r0, 0x3, 0x3) execveat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000140)='tmpfs\x00', &(0x7f0000000180)='tmpfs\x00', &(0x7f00000001c0)='tmpfs\x00', &(0x7f0000000200)='m^\x00'], &(0x7f0000000340)=[&(0x7f0000000280)='\x00', &(0x7f00000002c0)='!&\x00', &(0x7f0000000300)='$^!*$:,,(.\x00'], 0x100) truncate(&(0x7f0000000000)='./file1\x00', 0x0) 07:00:48 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0) sendfile(r1, r2, 0x0, 0xffff) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @broadcast}, 0x10) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000700)={'ip6_vti0\x00', &(0x7f0000000680)={'ip6_vti0\x00', 0x0, 0x4, 0x1, 0x81, 0x0, 0x54, @loopback, @ipv4={'\x00', '\xff\xff', @dev}, 0x40, 0x80, 0x7ff, 0x32ee}}) sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000800)={&(0x7f0000000740)=ANY=[@ANYBLOB="84000000", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fbdbdf25100000004400018008000300000700001400020076657468315f746f5f7465616d000000140002007465616d5f736c6176655f310000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r4, @ANYBLOB="2c00018014000200766c616e30000000000000000000000014000200767863616e3100"/44], 0x84}, 0x1, 0x0, 0x0, 0x2000c011}, 0x20000015) r5 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file1\x00'}) symlinkat(&(0x7f00000001c0)='./file1\x00', r6, &(0x7f0000000240)='./file1\x00') ioctl$SG_EMULATED_HOST(r5, 0x5390, &(0x7f0000002340)) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r5, 0xc0189375, 0xfffffffffffffffc) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000140)='./file1\x00', 0x3709, 0x0, 0x0, 0x200480c, &(0x7f0000000400)={[{@numtail}, {@iocharset={'iocharset', 0x3d, 'koi8-u'}}], [{@uid_eq}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}]}) ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, 0x0) 07:00:48 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0) r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00') linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)='net/packet\x00') r2 = syz_mount_image$nfs(&(0x7f0000000440), &(0x7f0000000480)='./file0\x00', 0x6, 0x2, &(0x7f0000000600)=[{&(0x7f00000004c0)="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", 0xfa, 0x8}, {&(0x7f00000005c0)="0b61b120f1326251b3666926168fcf2333", 0x11, 0x4}], 0x128000, &(0x7f0000000640)={[{'m^\x00'}, {'tmpfs\x00'}, {}, {',%'}], [{@smackfsfloor={'smackfsfloor', 0x3d, '&)\x94'}}]}) r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000780), &(0x7f00000007c0)=0xc) symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00') linkat(r3, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file1\x00', 0x1000) renameat(r2, &(0x7f0000000680)='./file0\x00', r3, &(0x7f0000000740)='./file0\x00') renameat(r1, &(0x7f00000003c0)='./file1\x00', r0, &(0x7f0000000400)='./file0\x00') lseek(r0, 0x3, 0x3) execveat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000140)='tmpfs\x00', &(0x7f0000000180)='tmpfs\x00', &(0x7f00000001c0)='tmpfs\x00', &(0x7f0000000200)='m^\x00'], &(0x7f0000000340)=[&(0x7f0000000280)='\x00', &(0x7f00000002c0)='!&\x00', &(0x7f0000000300)='$^!*$:,,(.\x00'], 0x100) truncate(&(0x7f0000000000)='./file1\x00', 0x0) [ 125.910286] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 125.968406] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 125.993822] syz-executor.5 (3891) used greatest stack depth: 23704 bytes left 07:00:48 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0) r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00') linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)='net/packet\x00') r2 = syz_mount_image$nfs(&(0x7f0000000440), &(0x7f0000000480)='./file0\x00', 0x6, 0x2, &(0x7f0000000600)=[{&(0x7f00000004c0)="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", 0xfa, 0x8}, {&(0x7f00000005c0)="0b61b120f1326251b3666926168fcf2333", 0x11, 0x4}], 0x128000, &(0x7f0000000640)={[{'m^\x00'}, {'tmpfs\x00'}, {}, {',%'}], [{@smackfsfloor={'smackfsfloor', 0x3d, '&)\x94'}}]}) r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000780), &(0x7f00000007c0)=0xc) symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00') linkat(r3, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file1\x00', 0x1000) renameat(r2, &(0x7f0000000680)='./file0\x00', r3, &(0x7f0000000740)='./file0\x00') renameat(r1, &(0x7f00000003c0)='./file1\x00', r0, &(0x7f0000000400)='./file0\x00') lseek(r0, 0x3, 0x3) execveat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000140)='tmpfs\x00', &(0x7f0000000180)='tmpfs\x00', &(0x7f00000001c0)='tmpfs\x00', &(0x7f0000000200)='m^\x00'], &(0x7f0000000340)=[&(0x7f0000000280)='\x00', &(0x7f00000002c0)='!&\x00', &(0x7f0000000300)='$^!*$:,,(.\x00'], 0x100) truncate(&(0x7f0000000000)='./file1\x00', 0x0) 07:00:48 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0) sendfile(r1, r2, 0x0, 0xffff) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @broadcast}, 0x10) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000700)={'ip6_vti0\x00', &(0x7f0000000680)={'ip6_vti0\x00', 0x0, 0x4, 0x1, 0x81, 0x0, 0x54, @loopback, @ipv4={'\x00', '\xff\xff', @dev}, 0x40, 0x80, 0x7ff, 0x32ee}}) sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000800)={&(0x7f0000000740)=ANY=[@ANYBLOB="84000000", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fbdbdf25100000004400018008000300000700001400020076657468315f746f5f7465616d000000140002007465616d5f736c6176655f310000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r4, @ANYBLOB="2c00018014000200766c616e30000000000000000000000014000200767863616e3100"/44], 0x84}, 0x1, 0x0, 0x0, 0x2000c011}, 0x20000015) r5 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file1\x00'}) symlinkat(&(0x7f00000001c0)='./file1\x00', r6, &(0x7f0000000240)='./file1\x00') ioctl$SG_EMULATED_HOST(r5, 0x5390, &(0x7f0000002340)) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r5, 0xc0189375, 0xfffffffffffffffc) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000140)='./file1\x00', 0x3709, 0x0, 0x0, 0x200480c, &(0x7f0000000400)={[{@numtail}, {@iocharset={'iocharset', 0x3d, 'koi8-u'}}], [{@uid_eq}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}]}) ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, 0x0) 07:00:48 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0) r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) symlinkat(&(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00') linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file1\x00', 0x1000) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)='net/packet\x00') r2 = syz_mount_image$nfs(&(0x7f0000000440), &(0x7f0000000480)='./file0\x00', 0x6, 0x2, &(0x7f0000000600)=[{&(0x7f00000004c0)="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", 0xfa, 0x8}, {&(0x7f00000005c0)="0b61b120f1326251b3666926168fcf2333", 0x11, 0x4}], 0x128000, &(0x7f0000000640)={[{'m^\x00'}, {'tmpfs\x00'}, {}, {',%'}], [{@smackfsfloor={'smackfsfloor', 0x3d, '&)\x94'}}]}) r3 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000780), &(0x7f00000007c0)=0xc) symlinkat(&(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000040)='./file0\x00') linkat(r3, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file1\x00', 0x1000) renameat(r2, &(0x7f0000000680)='./file0\x00', r3, &(0x7f0000000740)='./file0\x00') renameat(r1, &(0x7f00000003c0)='./file1\x00', r0, &(0x7f0000000400)='./file0\x00') lseek(r0, 0x3, 0x3) execveat(r0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000140)='tmpfs\x00', &(0x7f0000000180)='tmpfs\x00', &(0x7f00000001c0)='tmpfs\x00', &(0x7f0000000200)='m^\x00'], &(0x7f0000000340)=[&(0x7f0000000280)='\x00', &(0x7f00000002c0)='!&\x00', &(0x7f0000000300)='$^!*$:,,(.\x00'], 0x100) [ 126.145854] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 127.033238] loop4: detected capacity change from 0 to 264192 [ 127.034515] FAT-fs (loop4): Unrecognized mount option "subj_type=/dev/nvram" or missing value [ 127.043227] loop4: detected capacity change from 0 to 264192 [ 127.044047] FAT-fs (loop4): Unrecognized mount option "subj_type=/dev/nvram" or missing value [ 127.311464] loop1: detected capacity change from 0 to 16380 [ 127.319477] loop1: detected capacity change from 0 to 16380 [ 127.322988] ======================================================= [ 127.322988] WARNING: The mand mount option has been deprecated and [ 127.322988] and is ignored by this kernel. Remove the mand [ 127.322988] option from the mount to silence this warning. [ 127.322988] ======================================================= [ 127.325306] tmpfs: Unsupported parameter 'huge' VM DIAGNOSIS: 07:00:48 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=0000000000000154 RCX=ffffffff811eb547 RDX=fffffbfff0a5d945 RSI=0000000000000004 RDI=ffffffff852eca24 RBP=ffff88800970ea00 RSP=ffff888018937e28 R8 =0000000000000001 R9 =ffffffff852eca27 R10=fffffbfff0a5d944 R11=0000000000000001 R12=ffffffff852ec920 R13=ffffffff852eca24 R14=ffff888018937ec8 R15=0000000000000000 RIP=ffffffff811eb551 RFL=00000217 [----APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fc467e4c8c0 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000056134ef39000 CR3=000000000f362000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffff00 ffff000000000000 YMM02=0000000000000000 0000000000000000 7269762f73656369 7665642f7379732f YMM03=0000000000000000 0000000000000000 747269762f736563 697665642f737973 YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 000056134ef1dc70 000056134ef02290 YMM06=0000000000000000 0000000000000000 000056134ef1dc50 0000000300000002 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 2f63697361622f63 72732f2e2e000d0a YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000075 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1551 RDI=ffffffff87643ba0 RBP=ffffffff87643b60 RSP=ffff8880402d7698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000075 R11=0000000000000001 R12=0000000000000075 R13=ffffffff87643b60 R14=0000000000000010 R15=ffffffff822b1540 RIP=ffffffff822b15a9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fa6daf0e700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f11ba3238e0 CR3=000000001d9da000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fa6dda7f7c0 00007fa6dda7f7c8 YMM02=0000000000000000 0000000000000000 00007fa6dda7f7e0 00007fa6dda7f7c0 YMM03=0000000000000000 0000000000000000 00007fa6dda7f7c8 00007fa6dda7f7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000