Warning: Permanently added '[localhost]:11395' (ECDSA) to the list of known hosts. 2022/09/25 23:19:16 fuzzer started 2022/09/25 23:19:16 dialing manager at localhost:38881 syzkaller login: [ 46.651680] cgroup: Unknown subsys name 'net' [ 46.786800] cgroup: Unknown subsys name 'rlimit' 2022/09/25 23:19:33 syscalls: 2215 2022/09/25 23:19:33 code coverage: enabled 2022/09/25 23:19:33 comparison tracing: enabled 2022/09/25 23:19:33 extra coverage: enabled 2022/09/25 23:19:33 setuid sandbox: enabled 2022/09/25 23:19:33 namespace sandbox: enabled 2022/09/25 23:19:33 Android sandbox: enabled 2022/09/25 23:19:33 fault injection: enabled 2022/09/25 23:19:33 leak checking: enabled 2022/09/25 23:19:33 net packet injection: enabled 2022/09/25 23:19:33 net device setup: enabled 2022/09/25 23:19:33 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/25 23:19:33 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/25 23:19:33 USB emulation: enabled 2022/09/25 23:19:33 hci packet injection: enabled 2022/09/25 23:19:33 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220923) 2022/09/25 23:19:33 802.15.4 emulation: enabled 2022/09/25 23:19:33 fetching corpus: 50, signal 23490/25323 (executing program) 2022/09/25 23:19:33 fetching corpus: 100, signal 36616/40112 (executing program) 2022/09/25 23:19:33 fetching corpus: 150, signal 48208/53128 (executing program) 2022/09/25 23:19:33 fetching corpus: 200, signal 53845/60221 (executing program) 2022/09/25 23:19:33 fetching corpus: 250, signal 60799/68517 (executing program) 2022/09/25 23:19:33 fetching corpus: 300, signal 64349/73410 (executing program) 2022/09/25 23:19:34 fetching corpus: 350, signal 68261/78617 (executing program) 2022/09/25 23:19:34 fetching corpus: 400, signal 73704/85204 (executing program) 2022/09/25 23:19:34 fetching corpus: 450, signal 76039/88827 (executing program) 2022/09/25 23:19:34 fetching corpus: 500, signal 78736/92766 (executing program) 2022/09/25 23:19:34 fetching corpus: 550, signal 82717/97806 (executing program) 2022/09/25 23:19:34 fetching corpus: 600, signal 84292/100613 (executing program) 2022/09/25 23:19:34 fetching corpus: 650, signal 88296/105549 (executing program) 2022/09/25 23:19:35 fetching corpus: 700, signal 90424/108741 (executing program) 2022/09/25 23:19:35 fetching corpus: 750, signal 92741/112108 (executing program) 2022/09/25 23:19:35 fetching corpus: 800, signal 95478/115793 (executing program) 2022/09/25 23:19:35 fetching corpus: 850, signal 98065/119353 (executing program) 2022/09/25 23:19:35 fetching corpus: 900, signal 99220/121572 (executing program) 2022/09/25 23:19:35 fetching corpus: 950, signal 100202/123647 (executing program) 2022/09/25 23:19:35 fetching corpus: 1000, signal 102506/126844 (executing program) 2022/09/25 23:19:35 fetching corpus: 1050, signal 105690/130805 (executing program) 2022/09/25 23:19:36 fetching corpus: 1100, signal 107961/133893 (executing program) 2022/09/25 23:19:36 fetching corpus: 1150, signal 108884/135827 (executing program) 2022/09/25 23:19:36 fetching corpus: 1200, signal 110475/138251 (executing program) 2022/09/25 23:19:36 fetching corpus: 1250, signal 113372/141682 (executing program) 2022/09/25 23:19:36 fetching corpus: 1300, signal 114847/143961 (executing program) 2022/09/25 23:19:36 fetching corpus: 1350, signal 117058/146816 (executing program) 2022/09/25 23:19:36 fetching corpus: 1400, signal 119155/149603 (executing program) 2022/09/25 23:19:36 fetching corpus: 1450, signal 120065/151409 (executing program) 2022/09/25 23:19:36 fetching corpus: 1500, signal 123284/154977 (executing program) 2022/09/25 23:19:37 fetching corpus: 1550, signal 125262/157553 (executing program) 2022/09/25 23:19:37 fetching corpus: 1600, signal 125898/159113 (executing program) 2022/09/25 23:19:37 fetching corpus: 1650, signal 127075/161023 (executing program) 2022/09/25 23:19:37 fetching corpus: 1700, signal 128194/162897 (executing program) 2022/09/25 23:19:37 fetching corpus: 1750, signal 129994/165336 (executing program) 2022/09/25 23:19:37 fetching corpus: 1800, signal 131062/167084 (executing program) 2022/09/25 23:19:37 fetching corpus: 1850, signal 132809/169314 (executing program) 2022/09/25 23:19:37 fetching corpus: 1900, signal 133454/170770 (executing program) 2022/09/25 23:19:37 fetching corpus: 1950, signal 135284/173049 (executing program) 2022/09/25 23:19:38 fetching corpus: 2000, signal 138404/176284 (executing program) 2022/09/25 23:19:38 fetching corpus: 2050, signal 139802/178201 (executing program) 2022/09/25 23:19:38 fetching corpus: 2100, signal 140899/179954 (executing program) 2022/09/25 23:19:38 fetching corpus: 2150, signal 142617/182090 (executing program) 2022/09/25 23:19:38 fetching corpus: 2200, signal 143799/183855 (executing program) 2022/09/25 23:19:38 fetching corpus: 2250, signal 144306/185106 (executing program) 2022/09/25 23:19:38 fetching corpus: 2300, signal 145413/186748 (executing program) 2022/09/25 23:19:38 fetching corpus: 2350, signal 146913/188559 (executing program) 2022/09/25 23:19:38 fetching corpus: 2400, signal 148827/190647 (executing program) 2022/09/25 23:19:39 fetching corpus: 2450, signal 149790/192124 (executing program) 2022/09/25 23:19:39 fetching corpus: 2500, signal 150531/193470 (executing program) 2022/09/25 23:19:39 fetching corpus: 2550, signal 151051/194624 (executing program) 2022/09/25 23:19:39 fetching corpus: 2600, signal 152574/196379 (executing program) 2022/09/25 23:19:39 fetching corpus: 2650, signal 153645/197864 (executing program) 2022/09/25 23:19:39 fetching corpus: 2700, signal 155493/199803 (executing program) 2022/09/25 23:19:39 fetching corpus: 2750, signal 156152/200994 (executing program) 2022/09/25 23:19:39 fetching corpus: 2800, signal 157173/202427 (executing program) 2022/09/25 23:19:40 fetching corpus: 2850, signal 158606/204049 (executing program) 2022/09/25 23:19:40 fetching corpus: 2900, signal 159313/205208 (executing program) 2022/09/25 23:19:40 fetching corpus: 2950, signal 160052/206421 (executing program) 2022/09/25 23:19:40 fetching corpus: 3000, signal 161471/208020 (executing program) 2022/09/25 23:19:40 fetching corpus: 3050, signal 162184/209195 (executing program) 2022/09/25 23:19:40 fetching corpus: 3100, signal 163107/210454 (executing program) 2022/09/25 23:19:40 fetching corpus: 3150, signal 163757/211575 (executing program) 2022/09/25 23:19:40 fetching corpus: 3200, signal 164629/212788 (executing program) 2022/09/25 23:19:41 fetching corpus: 3250, signal 166030/214349 (executing program) 2022/09/25 23:19:41 fetching corpus: 3300, signal 167165/215638 (executing program) 2022/09/25 23:19:41 fetching corpus: 3350, signal 167934/216689 (executing program) 2022/09/25 23:19:41 fetching corpus: 3400, signal 170827/218844 (executing program) 2022/09/25 23:19:41 fetching corpus: 3450, signal 171383/219805 (executing program) 2022/09/25 23:19:41 fetching corpus: 3500, signal 171964/220777 (executing program) 2022/09/25 23:19:41 fetching corpus: 3550, signal 173103/221980 (executing program) 2022/09/25 23:19:41 fetching corpus: 3600, signal 174199/223160 (executing program) 2022/09/25 23:19:42 fetching corpus: 3650, signal 175105/224175 (executing program) 2022/09/25 23:19:42 fetching corpus: 3700, signal 175581/225080 (executing program) 2022/09/25 23:19:42 fetching corpus: 3750, signal 176389/226107 (executing program) 2022/09/25 23:19:42 fetching corpus: 3800, signal 176964/227029 (executing program) 2022/09/25 23:19:42 fetching corpus: 3850, signal 177384/227870 (executing program) 2022/09/25 23:19:42 fetching corpus: 3900, signal 178247/228866 (executing program) 2022/09/25 23:19:42 fetching corpus: 3950, signal 179029/229809 (executing program) 2022/09/25 23:19:42 fetching corpus: 4000, signal 179568/230642 (executing program) 2022/09/25 23:19:42 fetching corpus: 4050, signal 180601/231662 (executing program) 2022/09/25 23:19:42 fetching corpus: 4100, signal 181120/232430 (executing program) 2022/09/25 23:19:43 fetching corpus: 4150, signal 181856/233365 (executing program) 2022/09/25 23:19:43 fetching corpus: 4200, signal 182554/234211 (executing program) 2022/09/25 23:19:43 fetching corpus: 4250, signal 183287/235076 (executing program) 2022/09/25 23:19:43 fetching corpus: 4300, signal 183769/235853 (executing program) 2022/09/25 23:19:43 fetching corpus: 4350, signal 184604/236732 (executing program) 2022/09/25 23:19:43 fetching corpus: 4400, signal 185034/237497 (executing program) 2022/09/25 23:19:43 fetching corpus: 4450, signal 185945/238370 (executing program) 2022/09/25 23:19:43 fetching corpus: 4500, signal 186768/239237 (executing program) 2022/09/25 23:19:43 fetching corpus: 4550, signal 187244/239914 (executing program) 2022/09/25 23:19:44 fetching corpus: 4600, signal 187685/240643 (executing program) 2022/09/25 23:19:44 fetching corpus: 4650, signal 189321/241682 (executing program) 2022/09/25 23:19:44 fetching corpus: 4700, signal 189917/242409 (executing program) 2022/09/25 23:19:44 fetching corpus: 4750, signal 190569/243135 (executing program) 2022/09/25 23:19:44 fetching corpus: 4800, signal 191055/243806 (executing program) 2022/09/25 23:19:44 fetching corpus: 4850, signal 192271/244705 (executing program) 2022/09/25 23:19:44 fetching corpus: 4900, signal 193069/245463 (executing program) 2022/09/25 23:19:44 fetching corpus: 4950, signal 193423/246094 (executing program) 2022/09/25 23:19:44 fetching corpus: 5000, signal 194100/246794 (executing program) 2022/09/25 23:19:44 fetching corpus: 5050, signal 194871/247507 (executing program) 2022/09/25 23:19:45 fetching corpus: 5100, signal 195518/248133 (executing program) 2022/09/25 23:19:45 fetching corpus: 5150, signal 196071/248793 (executing program) 2022/09/25 23:19:45 fetching corpus: 5200, signal 196544/249419 (executing program) 2022/09/25 23:19:45 fetching corpus: 5250, signal 197196/250024 (executing program) 2022/09/25 23:19:45 fetching corpus: 5300, signal 197464/250562 (executing program) 2022/09/25 23:19:45 fetching corpus: 5350, signal 198029/251148 (executing program) 2022/09/25 23:19:45 fetching corpus: 5400, signal 198432/251726 (executing program) 2022/09/25 23:19:45 fetching corpus: 5450, signal 199048/252333 (executing program) 2022/09/25 23:19:45 fetching corpus: 5500, signal 199516/252915 (executing program) 2022/09/25 23:19:46 fetching corpus: 5550, signal 200163/253442 (executing program) 2022/09/25 23:19:46 fetching corpus: 5600, signal 200568/253966 (executing program) 2022/09/25 23:19:46 fetching corpus: 5650, signal 201492/254590 (executing program) 2022/09/25 23:19:46 fetching corpus: 5700, signal 201976/255125 (executing program) 2022/09/25 23:19:46 fetching corpus: 5750, signal 202502/255675 (executing program) 2022/09/25 23:19:46 fetching corpus: 5800, signal 203217/256180 (executing program) 2022/09/25 23:19:46 fetching corpus: 5850, signal 204236/256732 (executing program) 2022/09/25 23:19:46 fetching corpus: 5900, signal 204761/257266 (executing program) 2022/09/25 23:19:46 fetching corpus: 5950, signal 205343/257746 (executing program) 2022/09/25 23:19:47 fetching corpus: 6000, signal 205780/258206 (executing program) 2022/09/25 23:19:47 fetching corpus: 6050, signal 206111/258657 (executing program) 2022/09/25 23:19:47 fetching corpus: 6100, signal 206657/259160 (executing program) 2022/09/25 23:19:47 fetching corpus: 6150, signal 207193/259617 (executing program) 2022/09/25 23:19:47 fetching corpus: 6200, signal 207460/260012 (executing program) 2022/09/25 23:19:47 fetching corpus: 6250, signal 208527/260478 (executing program) 2022/09/25 23:19:47 fetching corpus: 6300, signal 209040/260954 (executing program) 2022/09/25 23:19:47 fetching corpus: 6350, signal 209965/261363 (executing program) 2022/09/25 23:19:48 fetching corpus: 6400, signal 210537/261764 (executing program) 2022/09/25 23:19:48 fetching corpus: 6450, signal 211047/262201 (executing program) 2022/09/25 23:19:48 fetching corpus: 6500, signal 211581/262415 (executing program) 2022/09/25 23:19:48 fetching corpus: 6550, signal 211860/262415 (executing program) 2022/09/25 23:19:48 fetching corpus: 6600, signal 212526/262419 (executing program) 2022/09/25 23:19:48 fetching corpus: 6650, signal 213209/262438 (executing program) 2022/09/25 23:19:48 fetching corpus: 6700, signal 213714/262449 (executing program) 2022/09/25 23:19:48 fetching corpus: 6750, signal 214283/262456 (executing program) 2022/09/25 23:19:49 fetching corpus: 6800, signal 214693/262456 (executing program) 2022/09/25 23:19:49 fetching corpus: 6850, signal 215471/262461 (executing program) 2022/09/25 23:19:49 fetching corpus: 6900, signal 215791/262461 (executing program) 2022/09/25 23:19:49 fetching corpus: 6950, signal 216072/262469 (executing program) 2022/09/25 23:19:49 fetching corpus: 7000, signal 216498/262470 (executing program) 2022/09/25 23:19:49 fetching corpus: 7002, signal 216506/262470 (executing program) 2022/09/25 23:19:49 fetching corpus: 7002, signal 216506/262470 (executing program) 2022/09/25 23:19:52 starting 8 fuzzer processes 23:19:52 executing program 0: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r0, 0x8983, &(0x7f0000000000)={0x1, 'batadv_slave_1\x00', {}, 0x8}) connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x4, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x1f, 0x2}, 0xe) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f00000000c0)=0x59, 0x4) connect$bt_l2cap(r0, &(0x7f0000000100)={0x1f, 0x0, @any, 0x3}, 0xe) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x7f}}, './file0\x00'}) ioctl$BTRFS_IOC_DEFRAG_RANGE(r2, 0x40309410, &(0x7f0000000180)={0x1, 0x9, 0x2, 0x7fffffff, 0x0, [0x8, 0x4, 0x6, 0x3]}) r3 = openat2$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x82200, 0x82}, 0x18) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000240)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0xc0c89425, &(0x7f0000000440)={"c8e67973236335fa212644b3fd57afd4", 0x0, r4, {0x3, 0x800}, {0x40, 0x1e44}, 0x1, [0x5, 0x54, 0x100, 0x2, 0x1f, 0x7, 0xc90, 0x8, 0x8000, 0x764, 0x8000, 0x7, 0x8, 0x7fffffff, 0x9, 0x7f]}) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000540), 0x14080, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000580)) r6 = creat(&(0x7f0000000780)='./file0\x00', 0x109) mknodat(r6, &(0x7f00000007c0)='./file0\x00', 0x400, 0x7) lsetxattr$trusted_overlay_opaque(&(0x7f0000000800)='./file1\x00', &(0x7f0000000840), &(0x7f0000000880), 0x2, 0x0) r7 = socket$netlink(0x10, 0x3, 0x12) sendmsg$ETHTOOL_MSG_PAUSE_GET(r7, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x60, r1, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000001}, 0x20008000) ioctl$SNDRV_TIMER_IOCTL_STATUS32(0xffffffffffffffff, 0x80585414, &(0x7f0000000a00)) splice(0xffffffffffffffff, &(0x7f0000000a80)=0x6, 0xffffffffffffffff, &(0x7f0000000b00)=0x2, 0x1, 0x2) 23:19:52 executing program 1: ioctl$TIOCGDEV(0xffffffffffffffff, 0x80045432, &(0x7f0000000000)) ioctl$PIO_UNIMAP(0xffffffffffffffff, 0x4b67, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x2, 0x1ff}, {0x8000, 0x200}, {0x4}]}) r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x8000, 0x81180) r1 = dup2(0xffffffffffffffff, r0) ioctl$TIOCMBIS(0xffffffffffffffff, 0x5416, &(0x7f0000000100)=0x3) ioctl$KDADDIO(r1, 0x4b34, 0x7) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$PIO_UNIMAP(r2, 0x4b67, &(0x7f00000001c0)={0x3, &(0x7f0000000180)=[{0x4, 0x6}, {0x3f, 0x1}, {0x7, 0xa22a}]}) r3 = socket$inet6(0xa, 0x6, 0x3) ioctl$FS_IOC_GETFSMAP(r3, 0xc0c0583b, &(0x7f0000000200)={0x0, 0x0, 0x4, 0x0, '\x00', [{0x80000001, 0xfffffffb, 0x80000000, 0x2, 0x2, 0x1}, {0xc3, 0x7, 0xffff, 0x7, 0x0, 0x7}], ['\x00', '\x00', '\x00', '\x00']}) ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380) r4 = syz_open_pts(r1, 0x2) ioctl$F2FS_IOC_SET_PIN_FILE(r4, 0x4004f50d, &(0x7f00000003c0)) io_submit(0x0, 0x1, &(0x7f00000004c0)=[&(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x2, r2, &(0x7f0000000400)="61c68b48024c3e654cb2f403334c6acd93586d8a2e0efa7fb452d178c10711712a7dccd6048fdd40323125b7b38b1393d1a389903fa10943377b98eade3557dc89fdc7e2deafb33de6d62900a7cb78e67b406361276870d01050796b87dd775484cb1a23c183a75dec04e4644badaaae", 0x70, 0xbcc, 0x0, 0x6}]) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r0, 0xf502, 0x0) dup2(r0, r1) r5 = memfd_create(&(0x7f0000000500)=':%\x00', 0x0) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r5, 0x40047211, &(0x7f0000000540)=0x2) r6 = fsmount(r1, 0x0, 0xb) ioctl$RNDADDENTROPY(r6, 0x40085203, &(0x7f0000000580)={0x3, 0x1000, "13aba4edfe43fce2a689db0b24e471fe788249cc4916da8fad92e802335a80b7f2f1d29efb36654ce389385dc6ac17c0243096607369480e55f4b65fa09ebe4bac89fde61d6f70f226e1d45b141cd3a4809bcfabe4b9dd6e7c8aa07a947644ee36a7db4c2c90e4eb650b870364312489ac95c161369fdf29e5f181cf5124970f23d31a8b4e493089c5e0d25536b5bdf626dc15dafa27e12359fe5db42f690b115566885159c57d009a817b7c005eb8f9a5022889f943bdf12f236a075cfa7ca278f70a792ab10dcb8732bfba8a27a82788e3c12dde8085037debd099a65d8ee70dc968b8d6aaaad2aaae9115a959a3c52dadac5d2eb6a03a687aa994f842e9882ec399d48988290f496b9f8cfb987ddef8e9fa20e754eb610e88d7716688d5b9ad3e955ddf0f011557b12cb39c0293cfa4a739bdbe2c1541bd5a34e39954dcc08d780e7777d9e9b6c8ac9b1483f5d86a86248ed32a2f9196046cc1c16444f63a5863f394446f7dc364edec6705dc78902c9bf48d402fc33155329ee071ef6033832c491333ae61e63b561bff9b272827ed64064bb106fcbb9c58b175dfc7f45f0069149173e506177b35885a7c1148bbc5924c5e7a5a6d487980fcbcdf6186216a7512780264ca9a6983a7352180bbff4ad6e30e5e8efdba753524fff23fff474b9407b74bb469a65795159a06b59618271972b60426aaf36151790a67a8dcd2d2a6bacfff5029afde0d4adc2a779f5dc784988487c643dcf03709b1bc440db2e6d4ed3ad6186bd54ad8b793f5e114f0da7f56bbdd40e000d257d758d51625ec69be4cec4c763ebc0dcdef1cffb3c67fe776966360fc87578fd211da2c908dec152a118c1727113820e077e6a6d6426ebda1303daa1fff2b564def20c186936b82ff39efc3a57ca6ba8e90658d89af8563198cbc7d7bbdb6daf1b5bb9d5a73d5b0ea4b23bb22f8229d71b4c692b26b74fbd015f84b515383a21caf1cd0c0ff7e63a0de79ee5f45d254008461ee04ea32b62bd74818e28eaf8beb52f85ab88fdfd3646232588e18c29b488b5ab5b0362523616e02de2dd8c2a5b449440412c6eb7eaf6acb7c81264475ddcd79681fa282d4fa2fb312bc4259d34914a7d6a71a1755d2fdc2369492ca0faff194d8656b9596a702cbbb5c1ce9c01b715df084c921b943372c6687128aae636d80b278dc539a151c7ba2edb1a737b661e75fe93bf442804a1feb8a0bd1c32e5e0d72a96f86d50f4bf9e103881fc1f851de6f7b8ff0ac53ff0f4dac3457dc82008c2354553812bbbcf81bd9e73900ef7129b969493dfe7191049666328562760638b175c4f9f93ebe75524cb9fc8f5e32180b88edc4d8ef645968c914b8708e83b4f949502b1a572d1fa8b1909a05f2e1f5504f376e5e003f0af77ac8c905a7eaee2083df7d43dab01338554ab51b4dbe6a21a910368f37f3e1e7e54453f72d0fc6554ccd8b7ecb0ee525e9ca9fc5729aaddbef410cf8e7733217dc56acdd7a7f352792a764ee39e15b51334f070033afe4d4d7adb7299d5e4e802503737ed6b67812879cf03a2bf93c52107b74dc276dd4298e4baef954e51bcbcc9c90b581928c5ffe460378db05d1e62f66fc08ccdf1b517f5b555bc34a21124cd8d2f7788b47c0836b6a70030edd4f2dac06aeb3dbd6a24841bff75fa7086f5a95f406f00c70dc7fe830b394d5f2001dbec158745032c93f61d9240bcbd69c6485d9dc0745d8ee4df7ab66092c0e7868f46a0560ae443b8db4d22b5446f1c525584b2895586e7f00d49b88ebbdbc85b430a3bbba638749935990678efe6b363178e726cf13511d8d1e0b06a4303e323b68e66fa64adf8655cb302b5c44fc456abc1ea049d389b1c621f738cf308c14a68be2973073daeeb7717ac8506b39ea6af6ea508b8e64950afdd11898a03d7b59e7a828c81bba8ad8721b9fa5f775be7955f052a9a1d6f4cb1020a92908f7d80e2670d9c928693379169cd5769d3c6578fa76acfa61b880bd15f1fc5e8f067e2e3699ee69d57ccc89a524ada72f746562b75a6a1b348e4f7f9bdbd514da4af62002cdaa68d86b5918732bb1feb4c17c0cee82efb681c3dc38c537e96f05acd9258347d12ee5b5537e3ea4fe65187abbadbfd0ed06ecd29990c5c68de74d62caac5e593b99bf11d7c93dd20d1af05423b73a931ac1f314fd0e8d53cf260450b8ef2d074659e81eda0b51f7fb6bfe990747f3d875f35b4328d781e687597cedaed605c211823f24d8e93580f877d92806dd6f9189821e935ece34b5557964a48f351f11380ff5b00ea5418c080c7a8822bfacdfd5388e71075864f1e7ad8b1c5f88191a62ed577cc535d808071c5b20d32eba03ea59ff4ffcdbde04d5b6d2ef70b580faaa5bdf35902e743f8f5bac0f2b81a2b46fa4e1e8036879df50a6e48285e0d79482d8f05d1c9a2d9530ba2fa61793b1b74e3df5376aa01cec06b7cf9af0e308f74ecfd2d243378e20fa349117f9b1f87bc05c76a638bfe8aea70d4268a767b46d83c9dc8f1ada4fbd2535f0bcbc60a0654948099c91c0faf166e20cf171e27992076af4bd545ee8b15e9bfca0b43dc90a0e8b32d76cd1b6b700287a7701fbb1f939243796d0dca9ac3ace4a411307222d586af0be24ac84bd6cb5345fdc37802b4cec0a6827b75f9c4353e49bd5071d46e14c60133d2cb14831394aadc38ba61c86201714c6d3888f4e2caad0871ca7ba6436760843e62d10d838a970c65f1052335e33ee066d55a75541f0bc59669fd18539c0743f8dff8dd7309927681329cb7c8a5e6cc076841984471ca2fcdad1293e23aee4292dbad6be38b108b43d038b8176a729b1803cf262a4f33513ea59b5f2af87539058298b7e893a0f462f4be6e495d9422fdde49556d782a8ca5fc21f89b7572b0eb6b624d1ff7fe6ddbe2d4acd22b363b505ebabef1ba388fd60646949892ed0f61995d1206347d6c638859a38f4408655ab76b51d19a23524c0cc9fff25f6d02796a33794873015ee71605dc7177cc888627e91d75c09571717cb9aec3f010776b40a2ec247a39c8a030f639fca6a3a1e8f23acb32fd252f4b7641b0fe26340eb48b910e8ca1a59a68cdeb93ca45a4ef178672587b160af4d36f09ad552f192bc3b22aa20bae67ff27977d8e07be9cf1a8019089951b8bce715f3ff030afb66c424676cc70f647c2b15f5341695a073190136c2f31a5985366f40eee480c6a3048f8512a8349363ea93e50410d1e417810597b9e62b996690e8e4ba8ac57ddcaba9bd343c3a5a0788a2f345f77a1574c53c4be7de01a597798e767b88c25a1e03d1f1f263bfb6946c0658b3381b5c7108843a9006b17b4188beb345f7af9a79453e591dc26081499dd92e5068dbb510ab7653c96c8544ed758ed6aaa5d1b40d888254e573e44d7b3a90a9d305e1fd55665f6569c9bfe858da540d1eefd1a1d70cd54724d42da6d34ea6b09d3f4779341d95f4f4df330c2d60c8ba36232c637ffa7635d3dbbb113de7cd613c86dfba18491bd766fe0455bb870fbf5924418e27fbccc84a41e4fe7b478d32791f1b1fc2394cb4b59872e0eb98d3cf5a6a8c9de35a46110ffa9d8a1fe447c2744c186ecd115937db5399f1edca8a646a3dd14624a480936fe97f520279bab46045e9313e532fc3427c58dd56e25acb3168a55e3fa280130a2090095ad47d19f7f22feb0b9f3fc3549657f4c97fc6bb4a63c06eecc9310fb91a40c1c171d3a597dbd0f1ca5729d3b0f445084ca860f8b807bf06c3c7619b25c9ec6c21aca3d9a4cc59346913732e4301176d4bdc9ef9f35c33b2f36ffb3185cd1195ae915fee46123057f782828a653d7663cb941a46afc33517a0cac1cd897c1048fa9fc126824e9ff5ebe279080d30e5132854b2684e7b88e631cc544a9aada2a1e0bf96735e238f7badb61f787c7a1436f332aba9425c835c0b0af25d9d80b3cb8678778c0cffc5db8f5bc16c99c15b4dd755d4e197c63eaa2b08330457953918e367416345e626a061a5be882cc0a13b3a186cb9b76b414ff663ba9c8a52e0d5086cd88fe2c609187741d9420624791540c9156bfe77b8d2ef9b24516c892abadf5d64cacc1c48d7f0f161ebf6e4b3a652aa558e305d58ad9c73145e0fea4e4d91ee9ca5ef321d34ccff12497a266f83e6b0221f62672677373a05659102b7abd9523452310fb8a4bb77a98c373748531e6d45a5e6f5adaa9d35dca04dc5bfc001a4c26aae8a7846c2171e8a3a0ec0fdbd89756bcc5302ad7d6d365f7cf27e614db8fe866d2f79dd4d9132bd145996fa7b34cdb46230c4668882fe444daa20e8849ae249e989d5b77aa1ffe73cd08ce02c4f33aeb0396245d50691954754d29934a5b61068768157f446df9a025beaf59ff3269a8786744d9c2d6d09c911bf1c83c84ae6d9d38b048942187035fd32cc6ddb3b33fa6e64ec73be52e83da3af99f9878b89b716e685e449d200a5057a18856ac2cf079e636c7c7084d0d47637b61f0c5eb6d4198f9700cc3756da68c7a52febbacd0e95905dd64d131c690a30c95863c91a119153321777fe59fce8f7812a9f0e7fb5f17da46eed8763a677f909c4f113dc80b7e77801c7088c9492cd0b69619d7a726e913c0d24b24354277ae2aa61621a3825886cc0f19b7961935fc93decb2f2e2a0e26c4c49c2b78a26ef458cdb2314c79388bbe90a0c6381c40deb7c9ee0920c1fa076813b6e88634c198780ed75b5fd502e4e274f0e9fc62d67faeee70e058cf05db32449917a48a5fdcbb4366685be16022104bca6ea83de47b34f2f718c435c2f960e7ca0b5f0e8c9b945e5684732bf4af448352beca999f087eece682350f5c1118e184e2995df1e5e7fc6cd07b52e3fc4113bf8b19175b271cf8cc51621156985fbbb68c1a9bb3dcf11087a9c9417ad089eaf8f1941e32070936dcec792ca6443ce3bc96ae226a3d7de8f69da9bfec96e96d0d87d475a1d4bb41a7f433ad96583ec16251876e3df5ffa05078dad90a25e3c206d2c6ac3aa6092cd80c5825f9dc0a6c5572d7c183f391b723ee4019b459de3f6d5f9efd3790eb3d1810909753d26f1c5aa592840840f903e098e1c8565638d9fc6a897234ad710f559410900fdabbb5daf8a91448eb5b3ed6d7b3405ceaa445606a6d4dea079ff82eac9b6827c8aa40200f394a3c6cc4d32795a161913a9370e63dc867dc9f5087993188094041ffadaca73407b32252ca5ded199d14db6586db2518580d4be52a561548d2a7cdcf27f44c2c25192353919739fe9ac19f2c8132c9ebedb88abab4d3b740bf90421c7f097cdbdf07c1af81ff686de7850488ca03c6e705c3e2842a15e7179ff6b46de1ba1acf37f113d5712d0535cca706650236d00813e890f4ab4d315223ded79ab4f3dd7379b8d02c45ce89256d591b437a51f5315749a69d829f1f4d67f40b48a6b597b71e8dc3effc6ae01c1f1ed3eedfa513fecf64ced702eb97bfdaec1738840e31acf1106f53873109167916cbe9d57d7101ef10dcba166df501c17721af3070d91ccc4242c552296b25d3e3e6695b06681b7a28f426b2dc48579b68f94e5a696c6299f0449e37e2f9068afe22c6f097990a0a876200d3baa6bc1f78571ffeae8faf6834b89f5b92b1f6b904c8098986ac8a00a05e165aba6b7fb1943286e68c91d868894ce9013956d3455ed4c56f2dc4166ae776be86042477c9f8ade60dbcad14d8fbbbeef0fa814a0b8c47d81d7cd3221a5f1e0ca1d28f269c5506b21b8e516bbbf0e9a17c550682dd0468b283b697fba"}) 23:19:52 executing program 2: r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x9, 0x1) ioctl$int_out(r0, 0x5462, &(0x7f0000000040)) sendmmsg$inet(r0, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)="018e11b0cc948dadd6f964f729f864ba30b6dad67538309e03f892b7e32c16682c569165d0cd553b359edc6542e2f8520a134b17bcd8a06e40873876e9e748eb48671a725815715834e58549c1064d97550fad278dfee4ba6a513afed9ad8d5e17b96f1a3ae15818d4ba984929e470a5827bdbd9486d9b732ab1d49731a5945eeedd566daf5405bfa64794648959ffdc51e2577bf6af8246d893", 0x9a}, {&(0x7f0000000140)="57ea3c92e6264e65d2acdacd1e555d980b2b6ad4da2a3812e1914a65f5cfef5fb9ba5b3473d4dbac03fd58f713a3f368afaed432b43c94ad7c6a8c51bf97290e4aceec1b06a2404b2ff6", 0x4a}, {&(0x7f00000001c0)="1edfd8829387af8a197fed6e9a83cdf61199090028d1c84bc2e6f2c164a0a600b54173a45ccbc190b4140567b1fc6e3877d9e763105020fc838ef4303d144fe74c750c55ebde04c6dc8be027dbb7a89d17a7d54b651d82150e81936091df9c4a217a", 0x62}, {&(0x7f0000000240)="eff79fa0c6c13c5d7404fd1e7740fadca92d255d1c10d93598133b561aeb3e07d0c6ebf322eaedc8b9a6727f7636e3092d3689ac8643fae6e60fc5e40dc34e5e01b5afaa8dccdc2d9ef8b89f2c4c81ad6c52242a6a8e1530d69cc7f83e46e1bbe6805b", 0x63}, {&(0x7f00000002c0)="0df70b7bf360b8a4eb16f5e683edd9a53042626d4555ed87522f2e4b766fdb3cb379d0cf151da0b1c4d2cc8dda0a09cd3e5f2ef2a72923ff6c06bed324408c13e4a77199b432f510cc71505f142fa58e6f00117c18d00d2a3f0d32d252c080cf099484a79901e9e450b309a3529fe0a41bb50bad06d9a03cb55d6037eb0b4b498bd91abe853e3cdf7b1a076362dd03f7cb27a49c09685ecfb8e15e336c7baa54018896228c846272", 0xa8}], 0x5, &(0x7f0000000400)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x3}}, @ip_retopts={{0x1c, 0x0, 0x7, {[@ssrr={0x89, 0xb, 0x3f, [@loopback, @rand_addr=0x64010100]}]}}}], 0x50}}, {{&(0x7f0000000480)={0x2, 0x4e22, @private=0xa010100}, 0x10, &(0x7f00000006c0)=[{&(0x7f00000004c0)="68266d483ccdf50b39a769d02103a33d3461837e0261329a18027c004cb86972cf9a28d7c6d2ebd33fd39ff075c5710125ccc6143d8a9c15909870c25c354740a46c1442dc86931bb11d0ca2e41f2f41731f176379a6fab0a124afe55601b9508438c126b1737aeaa998a5f973a55ec0bf7590ef11cb013c36452a894d428720b965074b072fc7e49b41a6a62d6d83cc618c984b8c69999225e6bde0e74c5c0ea706cb4430e8ea0aa17867d92b567a40d6787cdd6517be7202ca917ce1ca71924ff49aada3715ef78aa9aaf5526e6cb9a22f97d8cef806cfdec9f6311d54d50c4a586c", 0xe3}, {&(0x7f00000005c0)="ab80f4d60ae396f0039255c720de1bff8f32e0abfa04e330ebccf7d29b6f29ad0dbe4cb8294f0434c9f0c305718ec2b53a59fa30460a96e23f00b2395fa2f5425b0f434528da1c5c919e0be2d57ef1b210f3a305be93125fb23abacc3f458a736da642c7221d49a0302d26b332f84f9fd4f21d66cdb62fb0fb5de06bd8b690c628a81df449d94fe416e9272000ba64f85436d129f3308a1bb256cb3a69f1a7b6b617321dc91863f272c98227aa5c388e82f612e7b816816920fd9d31a2b5ec3d2e6b5fb3c0c8e9b58abc3d99aef4682f55f0c9759da7663f3a22b170", 0xdc}], 0x2, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @multicast2}}}, @ip_retopts={{0xe0, 0x0, 0x7, {[@ssrr={0x89, 0x23, 0xa6, [@rand_addr=0x64010101, @private=0xa010100, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x1d}, @empty, @multicast1, @loopback, @dev={0xac, 0x14, 0x14, 0x43}]}, @timestamp_prespec={0x44, 0xc, 0xdf, 0x3, 0x2, [{@private=0xa010100, 0x8}]}, @lsrr={0x83, 0x27, 0xa2, [@multicast2, @private=0xa010100, @dev={0xac, 0x14, 0x14, 0x24}, @dev={0xac, 0x14, 0x14, 0x2a}, @private=0xa010102, @multicast1, @multicast2, @multicast1, @empty]}, @timestamp={0x44, 0x24, 0x2d, 0x0, 0x8, [0x48, 0xff, 0x81, 0x7, 0xfa, 0x88, 0x800, 0x5]}, @timestamp={0x44, 0x14, 0x43, 0x0, 0x5, [0x9, 0x80000000, 0x1, 0x1f]}, @cipso={0x86, 0x3f, 0x3, [{0x1, 0x11, "5ce6edd0900e9817c9a3050ef5fec0"}, {0x1, 0xa, "6f114dc4fff99841"}, {0x7, 0x9, "eeec2b03a891f3"}, {0x2, 0xb, "4caed00229d8f9efd9"}, {0x2, 0xa, "6ea0966203e26ed0"}]}]}}}], 0x100}}], 0x2, 0x10) ioctl$sock_inet_SIOCGIFDSTADDR(0xffffffffffffffff, 0x8917, &(0x7f0000000880)={'gretap0\x00'}) recvmmsg(r0, &(0x7f00000015c0)=[{{&(0x7f00000008c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000980)=[{&(0x7f0000000940)=""/44, 0x2c}], 0x1, &(0x7f00000009c0)=""/199, 0xc7}, 0x80}, {{&(0x7f0000000ac0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000000fc0)=[{&(0x7f0000000b40)=""/12, 0xc}, {&(0x7f0000000b80)=""/86, 0x56}, {&(0x7f0000000c00)=""/254, 0xfe}, {&(0x7f0000000d00)=""/161, 0xa1}, {&(0x7f0000000dc0)=""/48, 0x30}, {&(0x7f0000000e00)=""/220, 0xdc}, {&(0x7f0000000f00)=""/135, 0x87}], 0x7, &(0x7f0000001040)=""/4, 0x4}, 0xc8}, {{&(0x7f0000001080)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000001500)=[{&(0x7f0000001100)=""/206, 0xce}, {&(0x7f0000001200)=""/212, 0xd4}, {&(0x7f0000001300)=""/197, 0xc5}, {&(0x7f0000001400)=""/239, 0xef}], 0x4, &(0x7f0000001540)=""/77, 0x4d}, 0x80000000}], 0x3, 0x0, &(0x7f0000001680)={0x0, 0x989680}) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000016c0)='/sys/kernel/irq', 0x4400, 0x181) ioctl$TIOCGSERIAL(r2, 0x541e, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001700)=""/98}) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000001980)={&(0x7f0000001800)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001940)={&(0x7f0000001840)={0xc8, 0x0, 0xb2c, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x7fffffff, 0x3d}}}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x23b}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x200}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98a}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x5e40c5b6b1924d10}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2d5}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x1f}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x1ff}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x3}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x7}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x9}]}, 0xc8}, 0x1, 0x0, 0x0, 0x8040}, 0x1) recvmmsg(r0, &(0x7f0000002d00)=[{{&(0x7f00000019c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000002c00)=[{&(0x7f0000001a40)=""/4096, 0x1000}, {&(0x7f0000002a40)=""/66, 0x42}, {&(0x7f0000002ac0)=""/246, 0xf6}, {&(0x7f0000002bc0)=""/62, 0x3e}], 0x4, &(0x7f0000002c40)=""/174, 0xae}, 0x98}], 0x1, 0x42, &(0x7f0000002d40)={0x77359400}) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000002d80)={0x0, 0x8, 0x80000001}) ioctl$TIOCGSERIAL(0xffffffffffffffff, 0x541e, &(0x7f0000002e80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002dc0)=""/131}) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r1, 0x89f7, &(0x7f0000003140)={'syztnl1\x00', &(0x7f00000030c0)={'syztnl1\x00', 0x0, 0x2f, 0x8, 0xa5, 0xfffffff9, 0x22, @ipv4={'\x00', '\xff\xff', @multicast1}, @mcast2, 0x40, 0x40, 0xfffffffe, 0x3}}) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f0000003200)={'sit0\x00', &(0x7f0000003180)={'syztnl0\x00', r3, 0x4, 0x6, 0x20, 0x5f98, 0x20, @ipv4={'\x00', '\xff\xff', @loopback}, @mcast2, 0x717, 0x10, 0x6}}) ioctl$TCFLSH(r0, 0x540b, 0x2) r4 = signalfd(0xffffffffffffffff, &(0x7f0000003240)={[0x6]}, 0x8) setsockopt$SO_TIMESTAMP(r4, 0x1, 0x23, &(0x7f0000003280)=0x9, 0x4) syz_genetlink_get_family_id$batadv(&(0x7f00000032c0), r4) socket$nl_audit(0x10, 0x3, 0x9) ioctl$SG_GET_REQUEST_TABLE(r0, 0x2286, &(0x7f0000003300)) ioctl$sock_TIOCOUTQ(r2, 0x5411, &(0x7f0000003480)) [ 79.722608] audit: type=1400 audit(1664147992.142:6): avc: denied { execmem } for pid=286 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 23:19:52 executing program 3: recvmmsg(0xffffffffffffffff, &(0x7f0000004c00)=[{{&(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000080)=""/205, 0xcd}], 0x1, &(0x7f00000001c0)=""/95, 0x5f}, 0x9}, {{&(0x7f0000000240)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000001600)=[{&(0x7f00000002c0)=""/112, 0x70}, {&(0x7f0000000340)=""/14, 0xe}, {&(0x7f0000000380)=""/58, 0x3a}, {&(0x7f00000003c0)=""/65, 0x41}, {&(0x7f0000000440)=""/172, 0xac}, {&(0x7f0000000500)=""/157, 0x9d}, {&(0x7f00000005c0)=""/18, 0x12}, {&(0x7f0000000600)=""/4096, 0x1000}], 0x8}, 0x6}, {{&(0x7f0000001680)=@nfc_llcp, 0x80, &(0x7f0000002800)=[{&(0x7f0000001700)=""/111, 0x6f}, {&(0x7f0000001780)=""/99, 0x63}, {&(0x7f0000001800)=""/4096, 0x1000}], 0x3, &(0x7f0000002840)=""/240, 0xf0}, 0x1}, {{&(0x7f0000002940)=@tipc=@id, 0x80, &(0x7f0000002e80)=[{&(0x7f00000029c0)=""/112, 0x70}, {&(0x7f0000002a40)=""/46, 0x2e}, {&(0x7f0000002a80)=""/248, 0xf8}, {&(0x7f0000002b80)=""/115, 0x73}, {&(0x7f0000002c00)=""/146, 0x92}, {&(0x7f0000002cc0)=""/219, 0xdb}, {&(0x7f0000002dc0)=""/175, 0xaf}], 0x7, &(0x7f0000002f00)=""/180, 0xb4}, 0x2}, {{0x0, 0x0, &(0x7f0000003240)=[{&(0x7f0000002fc0)=""/232, 0xe8}, {&(0x7f00000030c0)=""/81, 0x51}, {&(0x7f0000003140)=""/22, 0x16}, {&(0x7f0000003180)=""/154, 0x9a}], 0x4, &(0x7f0000003280)=""/17, 0x11}}, {{&(0x7f00000032c0)=@in6={0xa, 0x0, 0x0, @empty}, 0x80, &(0x7f0000004700)=[{&(0x7f0000003340)=""/49, 0x31}, {&(0x7f0000003380)=""/197, 0xc5}, {&(0x7f0000003480)=""/158, 0x9e}, {&(0x7f0000003540)=""/11, 0xb}, {&(0x7f0000003580)=""/213, 0xd5}, {&(0x7f0000003680)=""/4096, 0x1000}, {&(0x7f0000004680)=""/114, 0x72}], 0x7}, 0x3f}, {{&(0x7f0000004780)=@generic, 0x80, &(0x7f0000004900)=[{&(0x7f0000004800)=""/83, 0x53}, {&(0x7f0000004880)=""/101, 0x65}], 0x2, &(0x7f0000004940)=""/251, 0xfb}, 0x9}, {{&(0x7f0000004a40), 0x80, &(0x7f0000004bc0)=[{&(0x7f0000004ac0)=""/171, 0xab}, {&(0x7f0000004b80)=""/34, 0x22}], 0x2}, 0x7f}], 0x8, 0x142, &(0x7f0000004e00)={0x0, 0x3938700}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000004e40)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000004ec0)={{{@in6=@remote, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@private2}}, &(0x7f0000004fc0)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000005000)={{{@in=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in=@loopback}}, &(0x7f0000005100)=0xe8) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f00000051c0)={'ip6gre0\x00', &(0x7f0000005140)={'ip6_vti0\x00', 0x0, 0x2f, 0x8, 0xff, 0xfff, 0xdc, @remote, @private0, 0x700, 0x10, 0x7ff, 0xdc}}) sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000005380)={&(0x7f0000004e80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000005340)={&(0x7f0000005200)={0x11c, 0x0, 0x20, 0x70bd26, 0x25dfdbfc, {}, [@HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x4}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x11c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f0000005440)={'ip6tnl0\x00', &(0x7f00000053c0)={'ip6tnl0\x00', r2, 0x2f, 0x8, 0x64, 0x8, 0x20, @private2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x700, 0x1, 0x0, 0x200}}) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000005480)={{0x1, 0x1, 0x18, r1, {0x7f}}, './file0\x00'}) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r5, 0x89fb, &(0x7f0000005540)={'sit0\x00', &(0x7f00000054c0)={'ip6gre0\x00', r3, 0x4, 0x9, 0x1, 0x3ff, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @dev={0xfe, 0x80, '\x00', 0x2d}, 0x8000, 0x1, 0xfffffffa}}) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89fb, &(0x7f0000005600)={'ip6gre0\x00', &(0x7f0000005580)={'ip6_vti0\x00', r2, 0x2f, 0x0, 0x19, 0x400, 0x40, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, 0x8, 0x10, 0x6, 0x80000000}}) syz_io_uring_setup(0x1740, &(0x7f0000005640)={0x0, 0x9939, 0x2, 0x1, 0x21d, 0x0, r1}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000056c0)=0x0, &(0x7f0000005700)) syz_io_uring_submit(r6, 0x0, &(0x7f0000005780)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x2, &(0x7f0000005740)={0x77359400}, 0x1, 0x0, 0x1}, 0x6) ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f00000057c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r7 = openat$incfs(r1, &(0x7f0000005a00)='.pending_reads\x00', 0x40, 0x164) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r7, 0xc0189375, &(0x7f0000005a40)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r8 = fsmount(r1, 0x0, 0x73) openat(r8, &(0x7f0000005a80)='./file0\x00', 0x101000, 0x0) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r1, &(0x7f0000005dc0)={&(0x7f0000005ac0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000005d80)={&(0x7f0000005b00)={0x280, 0x0, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x48, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x3d, 0x4, {'gcm(aes)\x00', 0x15, "e6cd7a282fecdb74fb357d261f6d77d9581a08fe2c"}}]}, @TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x100}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2a880000}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x967f}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x101}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x6}]}, @TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}]}, @TIPC_NLA_MEDIA={0x54, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4476}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1}]}, @TIPC_NLA_SOCK={0x38, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3bbaec48}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xd7a}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}]}]}, @TIPC_NLA_LINK={0x6c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xeff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}]}]}, @TIPC_NLA_LINK={0x88, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5c2c}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc}]}, @TIPC_NLA_SOCK={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x8000}, @TIPC_NLA_CON_NODE={0x8}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffffffe}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7fff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x280}, 0x1, 0x0, 0x0, 0x4004}, 0x24000000) syz_mount_image$nfs(&(0x7f0000005e00), &(0x7f0000005e40)='./file0\x00', 0x7, 0x2, &(0x7f0000005f80)=[{&(0x7f0000005e80)="81339e7ce4494be348b6b7ca11ad224604860e3c3586ddee5a0409dc7493ca5639feae4b195dceca839941e04eabe1786c898dc97ada0fe4dacf26db17c5", 0x3e, 0x2}, {&(0x7f0000005ec0)="0576fa6da9ec52225d3ecc1a6f341e9a4e00b8cdf3e898324cf050af63e43dd91b7e5a125352aaea8eff1202e308bf01cf715801bca3ce4a58277ab11b5e0b68519cd7cff6eaca3de960edd68ab3aa0b3ad06237f43c9e5e4ccad57aed3db344b4b6750d5c4c73077643bf87b38f89228e63fd37115aa4c016548f3ab6a33f4861a679c4c424f4e010", 0x89, 0x5}], 0x2810080, &(0x7f0000005fc0)={[{'\x1a\'\x18 \'.)'}, {'\x00'}, {':*}#\xeb@[-}&*\x8e(\\,]:[{-^\\(\x01'}], [{@hash}]}) sendmsg$NFT_MSG_GETTABLE(r5, &(0x7f00000060c0)={&(0x7f0000006000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000006080)={&(0x7f0000006040)={0x40, 0x1, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x4800}, 0x41) 23:19:52 executing program 5: ioctl$FS_IOC_GET_ENCRYPTION_NONCE(0xffffffffffffffff, 0x8010661b, &(0x7f0000000000)) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x20200, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) r1 = openat$cgroup_ro(r0, &(0x7f0000000080)='rdma.current\x00', 0x0, 0x0) sendmsg$TIPC_CMD_GET_NODES(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0x1, 0x1f, 0x25dfdbfe}, 0x1c}, 0x1, 0x0, 0x0, 0x20048010}, 0x40091) sendmsg$NL80211_CMD_DEL_PMK(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, 0x0, 0x4, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x71, 0x69}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x2c}, 0x1, 0x0, 0x0, 0x404c810}, 0x40) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f00000003c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x28, 0x0, 0x8, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x3, 0x10}}}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x8040}, 0x4080) r3 = openat$cgroup(r0, &(0x7f0000000400)='syz0\x00', 0x200002, 0x0) writev(r3, &(0x7f00000004c0)=[{&(0x7f0000000440)="28b7cba7bd0010e453ed2121853797b299bc23a7f60456dba95b2ee75736599274a7b3c610fd1eba56f65705710fa8f699c20895ff7cafc88642ce6d4c943093f619deef5c1013c11ba08a5080c0cf93eadb7b4904ac2695d4ce2756fb3e46effb24ba9058c6a2bb1e4303d12183b6a4dbc4ca0322349eb1", 0x78}], 0x1) ioctl$FS_IOC_GETVERSION(r3, 0x80087601, &(0x7f0000000500)) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r0, &(0x7f0000000680)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x4c, r4, 0x400, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x31}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x7a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x77}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x65}]}, 0x4c}, 0x1, 0x0, 0x0, 0x44005}, 0x80) r5 = open(&(0x7f00000006c0)='./file0\x00', 0x40000, 0x51) openat$cgroup_pressure(r5, &(0x7f0000000700)='io.pressure\x00', 0x2, 0x0) sendmsg$NL80211_CMD_REGISTER_BEACONS(r1, &(0x7f0000000800)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x1c, r4, 0x100, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r2}, @void}}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x855}, 0x40) accept$packet(r0, &(0x7f0000000880)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000008c0)=0x14) sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f0000000a00)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000009c0)={&(0x7f0000000900)={0xb0, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_AUTONEG={0x5}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PAUSE_AUTONEG={0x5}]}, 0xb0}, 0x1, 0x0, 0x0, 0x20008000}, 0x2404c054) signalfd(r1, &(0x7f0000000a40)={[0x101]}, 0x8) 23:19:52 executing program 4: r0 = syz_open_dev$ptys(0xc, 0x3, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x541c, &(0x7f0000000000)) r1 = dup(r0) ioctl$TIOCSBRK(r1, 0x5427) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x4e19befa74344323, 0x0) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x4800, 0x0) ioctl$KDFONTOP_SET(r3, 0x4b72, &(0x7f00000004c0)={0x0, 0x1, 0x12, 0x12, 0x141, &(0x7f00000000c0)="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"}) ioctl$BTRFS_IOC_QUOTA_CTL(r2, 0xc0109428, &(0x7f0000000500)={0x2, 0x9}) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x7f) ioctl$KDDISABIO(r2, 0x4b37) ioctl$KDSKBMODE(r1, 0x4b45, &(0x7f0000000540)=0x3) r5 = syz_open_dev$evdev(&(0x7f0000000580), 0x100, 0x80) pwritev2(r5, &(0x7f0000000ac0)=[{&(0x7f00000005c0)="735fa4301df968da9dc1039ead540577a676fc4a06e54a2c0ee6e1bd6adf3717f749568f4809a28a7a6bd1dc3c1c0e89500b792d8cc62cc25642076a15f2236d32d8149a7b5420faf7a35f6c9625777137bb16429dd87a0d2dd335f2784c600572234929145aed38367ba80955f8d6fdb03913cfef93a7b501358b39eb1f5b284c3b4e9bd3429e85bbdd539bd5719adf6c7cbffd11e36a6014f4e6caeadaaa01997806cd33eda3f07a0b7eeff8ba9a7da072a1b7597f", 0xb6}, {&(0x7f0000000680)="91ab4bc7ae4e9bdb1094320c02da7cf883d8d34a11ca3d034e08cb23a976e023df0805d9f537f35050115c485ccb0a80dc49aec06017772418e88d365b9603560a162bdf840ef3075bc67ca809493f6ddb9efd92c1b0eb32234190237bee55e01915eeb5ebb2e7686b8b8c1b23dcbd0f7721a1eb20", 0x75}, {&(0x7f0000000700)="260c3f3d4af4641fccd71a5229ee50af01cb12eecbc2cef5b48586c26296455f271157b7005db019151f41119c89790e9739b06fec281e8f05534382306869f8", 0x40}, {&(0x7f0000000740)="15837dc97a2f11ff6c0842d8c9be46d756fa2e6a23614e829ab4a2750ee1743920d40ea1c8aa974bab31f55c3a46a2f8dc5f6d8974aea60facea", 0x3a}, {&(0x7f0000000780)="c832ed92306f655ed67e70f52a961e8d2d88f7efe87f3fbdb05dcab5f240fe5421e93b8818b646bc6f843fb24e1e3a41c32f544ed92a3471a17ee1ae0cb25bbcb78ba27f3e3c240518b0b591e07f1816048d11f7823d552497e171ba61f6300ae97aebf7c0793011ddfb9875d1c8e04d38eecbed66a89e43cf45426cd652457bfb46254f43a49983ca2096c4044fa2b810e4f7bffe2c90772e149d10cec0d8f5ec8f5a092ce56114dcd518f03c180aa404582e5120dbfb711cb4cd95161330f00ae13f96ba19360571c3be23ba475fb34fd3e643b70df7354b0b4d1b7a", 0xdd}, {&(0x7f0000000880)="42ebd29e82bc84ac2bcb6474be22d44d237cf08d41cf054428162d7022a22c18508840d1566d9a5daaa11f5b0df0d1df26f147477f68a5e107dfd468cc284757a0fc778b969d807448ea48e9111a8d3aa3bdbc7e269e7224100b59b14d2e8ab600c04038b83a3e29576c69bc580e4cd3c285bf8f222eb72f8407a86f2c5e208bb8bbe6905fa4b2e6cfe2a91f08fdd2419f1c87edd13d71b4e9b146aa400fcb2e560311756347cb7d4cd51e38a3caa3958d588e821a4d2575cd79e0f7db7b74baa09e1a535501839b8d5af4221ec1c733bc683763536b533db3da67daa1284a2ee6947c", 0xe3}, {&(0x7f0000000980)="bb15860a69b848fd7c9b7b97fd63737729ae2612aede11428886c08f1130381c2dc40c665e770acb4194ae55da9e6051b23931b18ec60b0382fb5e7b34f1ebf1e81a646928cafa9cb1c45201f82df975fc9fb0ee234fc476e8157d6107cbc448e2d5f2074cdcaba4f1059e785372b901c0e2c2cb84", 0x75}, {&(0x7f0000000a00)="296fafdcde918cc7671cbc5cb68aa7a968d058f99ca0a542aeedd06719541b15ec1406af17f0ff878d8daef4fdd3064beb4d13b0abce109e6162439a989b600752f32adba4a0a417fae138296394c87a508e5daa51eb9f98b86dfc2d842beafe875b212fd7cdbe3e533d26820bc176f4927848b1959d90ab251a7dff1456184fcbb1aea75ff8", 0x86}], 0x8, 0x4, 0x101, 0x4) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r4, 0xc0096616, &(0x7f0000000b40)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$EVIOCSREP(r1, 0x40084503, &(0x7f0000000b80)=[0x1ff, 0x6]) ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f0000000bc0)) r6 = syz_open_dev$vcsn(&(0x7f0000000c00), 0xfffffffffffffffe, 0x400000) ioctl$TCSETS(r6, 0x5402, &(0x7f0000000c40)={0x3, 0x6, 0xfffff800, 0x2, 0x1b, "6d636e11dd96242a37e963a5bed8bc7e2ee040"}) accept4$inet(0xffffffffffffffff, &(0x7f0000000c80)={0x2, 0x0, @private}, &(0x7f0000000cc0)=0x10, 0x800) ioctl$KDGKBLED(r3, 0x4b64, &(0x7f0000000d00)) 23:19:52 executing program 6: ioctl$SCSI_IOCTL_GET_BUS_NUMBER(0xffffffffffffffff, 0x5386, &(0x7f0000000000)) socketpair(0x1a, 0x6, 0xb7, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r1}}, './file0\x00'}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, r4, 0x400, 0x70bd25, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xdb40, 0x70}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0xd}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6e}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2}]}, 0x44}, 0x1, 0x0, 0x0, 0x14}, 0x80) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_REMOVE(r5, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, 0x0, 0x2, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000010}, 0x40014) sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, r4, 0x100, 0x70bd26, 0x25dfdbfd, {{}, {@void, @void}}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x24000001}, 0x20000014) r6 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000440)) getpeername(r0, &(0x7f0000000680)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, &(0x7f0000000700)=0x80) sendmsg$FOU_CMD_DEL(r7, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000800)={&(0x7f0000000780)={0x64, 0x0, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e22}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e24}, @FOU_ATTR_PEER_V6={0x14, 0x9, @mcast2}]}, 0x64}, 0x1, 0x0, 0x0, 0x800}, 0x20004040) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r6, 0x8983, &(0x7f0000000880)) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x3c, r4, 0x0, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x5, 0x34}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x14, 0xcd, [0x1, 0x1, 0x2, 0x5, 0xfc01, 0x101, 0x51, 0x1ff]}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20040881}, 0x80) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f00000009c0)={{0x1, 0x1, 0x18, r0, {0x81}}, './file0/file0\x00'}) ioctl$FS_IOC_FIEMAP(r8, 0xc020660b, &(0x7f0000000a00)={0x1, 0x1, 0x1, 0x5, 0xa, [{0x1, 0x10001, 0x7, '\x00', 0x110a}, {0x4cb, 0x10000, 0x400}, {0x9, 0x3, 0x0, '\x00', 0x784}, {0x1, 0xfffffffffffffffb, 0x8, '\x00', 0x4}, {0x8, 0x8001, 0x4, '\x00', 0xb}, {0x10000, 0x8001, 0x8}, {0x3, 0x9, 0xffffffffffff0544, '\x00', 0x3973fe95cac86dbb}, {0x3936, 0xfffffffffffffff8, 0xfffffffffffffff9, '\x00', 0x488}, {0x100, 0x3, 0x1c, '\x00', 0x1041}, {0x2, 0x8, 0x400, '\x00', 0x2800}]}) ioctl$sock_SIOCADDRT(r2, 0x890b, &(0x7f0000000cc0)={0x0, @xdp={0x2c, 0x8, 0x0, 0x23}, @xdp={0x2c, 0x0, 0x0, 0xe00}, @nl=@proc={0x10, 0x0, 0x25dfdbfc, 0x2}, 0x1, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000c80)='team0\x00', 0x9, 0x10001, 0x3}) r9 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000d80), r5) sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, &(0x7f0000000e40)={&(0x7f0000000d40), 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x3c, r9, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40080d0}, 0x4014) r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000ec0), r3) sendmsg$NL80211_CMD_SET_MPATH(r0, &(0x7f0000001000)={&(0x7f0000000e80), 0xc, &(0x7f0000000fc0)={&(0x7f0000000f40)={0x64, r10, 0x100, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0x4044010}, 0x801) 23:19:52 executing program 7: ioctl$CDROM_SET_OPTIONS(0xffffffffffffffff, 0x5320, 0x12) r0 = open_tree(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x101100) ioctl$DVD_READ_STRUCT(r0, 0x5390, &(0x7f0000000040)=@physical={0x0, 0x1, [{0x5, 0x7, 0x5, 0x3, 0x8, 0x0, 0x3, 0x5, 0xa, 0x0, 0x80000000, 0x700, 0x1}, {0x3, 0x8, 0x8, 0x9, 0x5, 0x0, 0x2, 0x7, 0x8, 0x0, 0x0, 0x1, 0x2}, {0x2, 0x1, 0xa, 0x1, 0x4, 0x0, 0x0, 0x4, 0xf, 0x0, 0x401, 0x4, 0x7fff}, {0x1, 0x4, 0xc, 0xb, 0x4, 0x1, 0x2, 0x9, 0x3, 0x1, 0x10001, 0x9}]}) setxattr$trusted_overlay_redirect(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0), &(0x7f0000000900)='./file0\x00', 0x8, 0x2) ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f0000000940)) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000a40)={{{@in6=@private0, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@loopback}}, &(0x7f0000000b40)=0xe8) setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000b80)={r1, 0x1, 0x6}, 0x10) ioctl$CDROM_SET_OPTIONS(r0, 0x5320, 0x1) ioctl$DVD_WRITE_STRUCT(r0, 0x5390, &(0x7f0000000bc0)=@bca={0x3, 0xbc, "4d794be1b83666f49cacb5994e129e753c9596543c547d0f4b73f30d1b396faa4c8feb62a017fd692599871f8c6e0286f82bbae3b4cbcf98fb1c2263498af6d95bca96b34553d986a646df4593654890c9ec44cb57ee8d1e6eb1eac727fe96ddd25cfaab53e5a599312853f74c1c810866fb98d6af71bd6a4680e0adbd07fa4c28e1f65f53abca3fb0c31efa924845fdd08923a55835042a8433b70fca66a1d4e41d6dce8ad7a5bfb3f8f01d1b710b6b66a6fbc1d89788fa62f93b0e"}) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000001400), 0x20080, 0x0) ioctl$CDROMRESET(r2, 0x5312) ioctl$CDROMPLAYMSF(r2, 0x5303, &(0x7f0000001440)={0x3, 0x9, 0x1, 0x7, 0x5, 0x8}) flock(r2, 0x1) r3 = syz_io_uring_complete(0x0) ioctl$CDROMGETSPINDOWN(r3, 0x531d, &(0x7f0000001480)) ioctl$BTRFS_IOC_DEV_INFO(r2, 0xd000941e, &(0x7f00000014c0)={0x0, "a3e8de41af1fb58296b9d05e6a02a000"}) ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f00000024c0)={r4, "3cc9ebfb05515dc1c52882f627597835"}) ioctl$CDROM_SELECT_DISK(r2, 0x5322, 0x9f) ioctl$CDROMVOLREAD(r2, 0x5313, &(0x7f00000034c0)) ioctl$CDROMGETSPINDOWN(0xffffffffffffffff, 0x531d, &(0x7f0000003500)) [ 80.995148] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 80.997322] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 80.999677] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 81.000889] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 81.002746] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 81.004408] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 81.009082] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 81.011119] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 81.013476] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 81.015314] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 81.020704] Bluetooth: hci1: HCI_REQ-0x0c1a [ 81.023561] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 81.026626] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 81.031934] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 81.035353] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 81.038043] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 81.046019] Bluetooth: hci0: HCI_REQ-0x0c1a [ 81.110829] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 81.112632] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 81.113872] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 81.120692] Bluetooth: hci2: HCI_REQ-0x0c1a [ 81.131152] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 81.132451] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 81.134984] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 81.136502] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 81.137277] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 81.140882] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 81.147112] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 81.152489] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 81.155145] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 81.156346] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 81.158149] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 81.159260] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 81.160301] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 81.161272] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 81.165409] Bluetooth: hci5: HCI_REQ-0x0c1a [ 81.165756] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 81.173139] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 81.176824] Bluetooth: hci3: HCI_REQ-0x0c1a [ 81.177351] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 81.179068] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 81.195968] Bluetooth: hci6: HCI_REQ-0x0c1a [ 81.216344] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 81.219879] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 81.221390] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 81.224707] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 81.238313] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 81.239895] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 81.252703] Bluetooth: hci7: HCI_REQ-0x0c1a [ 83.069853] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 83.070154] Bluetooth: hci0: command 0x0409 tx timeout [ 83.071009] Bluetooth: hci1: command 0x0409 tx timeout [ 83.133677] Bluetooth: hci2: command 0x0409 tx timeout [ 83.197994] Bluetooth: hci3: command 0x0409 tx timeout [ 83.198561] Bluetooth: hci5: command 0x0409 tx timeout [ 83.261660] Bluetooth: hci6: command 0x0409 tx timeout [ 83.262371] Bluetooth: hci7: command 0x0409 tx timeout [ 85.117651] Bluetooth: hci1: command 0x041b tx timeout [ 85.118637] Bluetooth: hci0: command 0x041b tx timeout [ 85.181735] Bluetooth: hci2: command 0x041b tx timeout [ 85.245658] Bluetooth: hci5: command 0x041b tx timeout [ 85.246091] Bluetooth: hci3: command 0x041b tx timeout [ 85.309720] Bluetooth: hci7: command 0x041b tx timeout [ 85.310148] Bluetooth: hci6: command 0x041b tx timeout [ 85.729452] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 85.732101] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 85.734851] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 85.736880] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 85.737945] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 85.738618] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 85.759994] Bluetooth: hci4: HCI_REQ-0x0c1a [ 87.165638] Bluetooth: hci0: command 0x040f tx timeout [ 87.166066] Bluetooth: hci1: command 0x040f tx timeout [ 87.229642] Bluetooth: hci2: command 0x040f tx timeout [ 87.293638] Bluetooth: hci3: command 0x040f tx timeout [ 87.294039] Bluetooth: hci5: command 0x040f tx timeout [ 87.357640] Bluetooth: hci6: command 0x040f tx timeout [ 87.358039] Bluetooth: hci7: command 0x040f tx timeout [ 87.805660] Bluetooth: hci4: command 0x0409 tx timeout [ 89.213706] Bluetooth: hci1: command 0x0419 tx timeout [ 89.214167] Bluetooth: hci0: command 0x0419 tx timeout [ 89.277629] Bluetooth: hci2: command 0x0419 tx timeout [ 89.341652] Bluetooth: hci5: command 0x0419 tx timeout [ 89.342094] Bluetooth: hci3: command 0x0419 tx timeout [ 89.405706] Bluetooth: hci7: command 0x0419 tx timeout [ 89.406131] Bluetooth: hci6: command 0x0419 tx timeout [ 89.854248] Bluetooth: hci4: command 0x041b tx timeout [ 91.901667] Bluetooth: hci4: command 0x040f tx timeout [ 93.949692] Bluetooth: hci4: command 0x0419 tx timeout [ 133.939450] nfs: Unknown parameter '' '.)' [ 133.991619] nfs: Unknown parameter '' '.)' 23:20:46 executing program 3: r0 = getpid() pidfd_open(r0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) syz_io_uring_setup(0x227d, &(0x7f0000000140)={0x0, 0x1240, 0x8, 0x2, 0xc1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000200)) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000) r3 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x43, &(0x7f0000000140)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, {{}, 0x0, @in6=@mcast2}}, 0xe8) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300), 0x242880, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',cache=fscache,version=9p2000.u,pri\x00\x00\x00\x00\x00\x00\x00\x00devmap,loose,\x00osixacl,access=', @ANYRESDEC, @ANYBLOB=',access=any,cache=none,subj_role=,smackfsroot=,fsname=\\,smackfshat=,(^\\)\a^,hash,smackfsfloor=^#\",func=FIRMWARE_CHECK,\x00']) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) openat(r1, &(0x7f0000000000)='./file0\x00', 0x2101, 0x0) [ 134.123165] audit: type=1400 audit(1664148046.542:7): avc: denied { open } for pid=3879 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 134.124626] audit: type=1400 audit(1664148046.543:8): avc: denied { kernel } for pid=3879 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 134.172306] ------------[ cut here ]------------ [ 134.172328] [ 134.172332] ====================================================== [ 134.172335] WARNING: possible circular locking dependency detected [ 134.172339] 6.0.0-rc6-next-20220923 #1 Not tainted [ 134.172345] ------------------------------------------------------ [ 134.172348] syz-executor.3/3880 is trying to acquire lock: [ 134.172354] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 134.172392] [ 134.172392] but task is already holding lock: [ 134.172394] ffff8880101bfc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 134.172422] [ 134.172422] which lock already depends on the new lock. [ 134.172422] [ 134.172424] [ 134.172424] the existing dependency chain (in reverse order) is: [ 134.172427] [ 134.172427] -> #3 (&ctx->lock){....}-{2:2}: [ 134.172441] _raw_spin_lock+0x2a/0x40 [ 134.172462] __perf_event_task_sched_out+0x53b/0x18d0 [ 134.172476] __schedule+0xedd/0x2470 [ 134.172489] schedule+0xda/0x1b0 [ 134.172502] exit_to_user_mode_prepare+0x114/0x1a0 [ 134.172513] syscall_exit_to_user_mode+0x19/0x40 [ 134.172525] do_syscall_64+0x48/0x90 [ 134.172542] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 134.172554] [ 134.172554] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 134.172567] _raw_spin_lock_nested+0x30/0x40 [ 134.172587] raw_spin_rq_lock_nested+0x1e/0x30 [ 134.172600] task_fork_fair+0x63/0x4d0 [ 134.172616] sched_cgroup_fork+0x3d0/0x540 [ 134.172630] copy_process+0x4183/0x6e20 [ 134.172640] kernel_clone+0xe7/0x890 [ 134.172649] user_mode_thread+0xad/0xf0 [ 134.172659] rest_init+0x24/0x250 [ 134.172670] arch_call_rest_init+0xf/0x14 [ 134.172687] start_kernel+0x4c1/0x4e6 [ 134.172702] secondary_startup_64_no_verify+0xe0/0xeb [ 134.172716] [ 134.172716] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 134.172729] _raw_spin_lock_irqsave+0x39/0x60 [ 134.172748] try_to_wake_up+0xab/0x1930 [ 134.172760] up+0x75/0xb0 [ 134.172773] __up_console_sem+0x6e/0x80 [ 134.172788] console_unlock+0x46a/0x590 [ 134.172804] vprintk_emit+0x1bd/0x560 [ 134.172820] vprintk+0x84/0xa0 [ 134.172835] _printk+0xba/0xf1 [ 134.172846] kauditd_hold_skb.cold+0x3f/0x4e [ 134.172862] kauditd_send_queue+0x233/0x290 [ 134.172877] kauditd_thread+0x5da/0x9a0 [ 134.172890] kthread+0x2ed/0x3a0 [ 134.172904] ret_from_fork+0x22/0x30 [ 134.172916] [ 134.172916] -> #0 ((console_sem).lock){....}-{2:2}: [ 134.172929] __lock_acquire+0x2a02/0x5e70 [ 134.172945] lock_acquire+0x1a2/0x530 [ 134.172961] _raw_spin_lock_irqsave+0x39/0x60 [ 134.172979] down_trylock+0xe/0x70 [ 134.172993] __down_trylock_console_sem+0x3b/0xd0 [ 134.173009] vprintk_emit+0x16b/0x560 [ 134.173024] vprintk+0x84/0xa0 [ 134.173039] _printk+0xba/0xf1 [ 134.173049] report_bug.cold+0x72/0xab [ 134.173065] handle_bug+0x3c/0x70 [ 134.173080] exc_invalid_op+0x14/0x50 [ 134.173096] asm_exc_invalid_op+0x16/0x20 [ 134.173107] group_sched_out.part.0+0x2c7/0x460 [ 134.173118] ctx_sched_out+0x8f1/0xc10 [ 134.173128] __perf_event_task_sched_out+0x6d0/0x18d0 [ 134.173140] __schedule+0xedd/0x2470 [ 134.173153] schedule+0xda/0x1b0 [ 134.173165] exit_to_user_mode_prepare+0x114/0x1a0 [ 134.173176] syscall_exit_to_user_mode+0x19/0x40 [ 134.173188] do_syscall_64+0x48/0x90 [ 134.173204] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 134.173216] [ 134.173216] other info that might help us debug this: [ 134.173216] [ 134.173218] Chain exists of: [ 134.173218] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 134.173218] [ 134.173233] Possible unsafe locking scenario: [ 134.173233] [ 134.173235] CPU0 CPU1 [ 134.173237] ---- ---- [ 134.173239] lock(&ctx->lock); [ 134.173245] lock(&rq->__lock); [ 134.173251] lock(&ctx->lock); [ 134.173257] lock((console_sem).lock); [ 134.173263] [ 134.173263] *** DEADLOCK *** [ 134.173263] [ 134.173264] 2 locks held by syz-executor.3/3880: [ 134.173271] #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 134.173300] #1: ffff8880101bfc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 134.173327] [ 134.173327] stack backtrace: [ 134.173329] CPU: 0 PID: 3880 Comm: syz-executor.3 Not tainted 6.0.0-rc6-next-20220923 #1 [ 134.173342] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 134.173350] Call Trace: [ 134.173354] [ 134.173358] dump_stack_lvl+0x8b/0xb3 [ 134.173375] check_noncircular+0x263/0x2e0 [ 134.173391] ? format_decode+0x26c/0xb50 [ 134.173407] ? print_circular_bug+0x450/0x450 [ 134.173424] ? enable_ptr_key_workfn+0x20/0x20 [ 134.173438] ? __lockdep_reset_lock+0x180/0x180 [ 134.173455] ? format_decode+0x26c/0xb50 [ 134.173471] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 134.173488] __lock_acquire+0x2a02/0x5e70 [ 134.173510] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 134.173531] lock_acquire+0x1a2/0x530 [ 134.173548] ? down_trylock+0xe/0x70 [ 134.173564] ? lock_release+0x750/0x750 [ 134.173581] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 134.173601] ? vprintk+0x84/0xa0 [ 134.173619] _raw_spin_lock_irqsave+0x39/0x60 [ 134.173637] ? down_trylock+0xe/0x70 [ 134.173653] down_trylock+0xe/0x70 [ 134.173668] ? vprintk+0x84/0xa0 [ 134.173684] __down_trylock_console_sem+0x3b/0xd0 [ 134.173701] vprintk_emit+0x16b/0x560 [ 134.173717] ? lock_downgrade+0x6d0/0x6d0 [ 134.173735] vprintk+0x84/0xa0 [ 134.173752] _printk+0xba/0xf1 [ 134.173763] ? record_print_text.cold+0x16/0x16 [ 134.173777] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 134.173790] ? lock_downgrade+0x6d0/0x6d0 [ 134.173807] ? report_bug.cold+0x66/0xab [ 134.173824] ? group_sched_out.part.0+0x2c7/0x460 [ 134.173836] report_bug.cold+0x72/0xab [ 134.173854] handle_bug+0x3c/0x70 [ 134.173870] exc_invalid_op+0x14/0x50 [ 134.173888] asm_exc_invalid_op+0x16/0x20 [ 134.173900] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 134.173914] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 134.173925] RSP: 0018:ffff8880176cfc48 EFLAGS: 00010006 [ 134.173934] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 134.173942] RDX: ffff888020643580 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 134.173949] RBP: ffff8880086685c8 R08: 0000000000000005 R09: 0000000000000001 [ 134.173956] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880101bfc00 [ 134.173963] R13: ffff88806ce3d140 R14: ffffffff8547c9a0 R15: 0000000000000002 [ 134.173974] ? group_sched_out.part.0+0x2c7/0x460 [ 134.173987] ? group_sched_out.part.0+0x2c7/0x460 [ 134.174000] ctx_sched_out+0x8f1/0xc10 [ 134.174013] __perf_event_task_sched_out+0x6d0/0x18d0 [ 134.174029] ? lock_is_held_type+0xd7/0x130 [ 134.174042] ? __perf_cgroup_move+0x160/0x160 [ 134.174054] ? set_next_entity+0x304/0x550 [ 134.174071] ? update_curr+0x267/0x740 [ 134.174089] ? lock_is_held_type+0xd7/0x130 [ 134.174102] __schedule+0xedd/0x2470 [ 134.174118] ? io_schedule_timeout+0x150/0x150 [ 134.174134] ? __x64_sys_futex_time32+0x480/0x480 [ 134.174148] schedule+0xda/0x1b0 [ 134.174162] exit_to_user_mode_prepare+0x114/0x1a0 [ 134.174174] syscall_exit_to_user_mode+0x19/0x40 [ 134.174187] do_syscall_64+0x48/0x90 [ 134.174204] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 134.174217] RIP: 0033:0x7f1b4304ab19 [ 134.174225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 134.174236] RSP: 002b:00007f1b405c0218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 134.174246] RAX: 0000000000000001 RBX: 00007f1b4315df68 RCX: 00007f1b4304ab19 [ 134.174254] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1b4315df6c [ 134.174261] RBP: 00007f1b4315df60 R08: 000000000000000e R09: 0000000000000000 [ 134.174268] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f1b4315df6c [ 134.174275] R13: 00007fffc2a56fff R14: 00007f1b405c0300 R15: 0000000000022000 [ 134.174288] [ 134.231374] WARNING: CPU: 0 PID: 3880 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 134.232036] Modules linked in: [ 134.232277] CPU: 0 PID: 3880 Comm: syz-executor.3 Not tainted 6.0.0-rc6-next-20220923 #1 [ 134.232864] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 134.233667] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 134.234061] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 134.235368] RSP: 0018:ffff8880176cfc48 EFLAGS: 00010006 [ 134.235763] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 134.236296] RDX: ffff888020643580 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 134.236816] RBP: ffff8880086685c8 R08: 0000000000000005 R09: 0000000000000001 [ 134.237335] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880101bfc00 [ 134.237853] R13: ffff88806ce3d140 R14: ffffffff8547c9a0 R15: 0000000000000002 [ 134.238370] FS: 00007f1b405c0700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 134.238952] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 134.239373] CR2: 00007fb155cdc6f4 CR3: 0000000037fe8000 CR4: 0000000000350ef0 [ 134.239890] Call Trace: [ 134.240079] [ 134.240257] ctx_sched_out+0x8f1/0xc10 [ 134.240547] __perf_event_task_sched_out+0x6d0/0x18d0 [ 134.240928] ? lock_is_held_type+0xd7/0x130 [ 134.241249] ? __perf_cgroup_move+0x160/0x160 [ 134.241577] ? set_next_entity+0x304/0x550 [ 134.241893] ? update_curr+0x267/0x740 [ 134.242181] ? lock_is_held_type+0xd7/0x130 [ 134.242500] __schedule+0xedd/0x2470 [ 134.242785] ? io_schedule_timeout+0x150/0x150 [ 134.243128] ? __x64_sys_futex_time32+0x480/0x480 [ 134.243483] schedule+0xda/0x1b0 [ 134.243741] exit_to_user_mode_prepare+0x114/0x1a0 [ 134.244107] syscall_exit_to_user_mode+0x19/0x40 [ 134.244457] do_syscall_64+0x48/0x90 [ 134.244738] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 134.245110] RIP: 0033:0x7f1b4304ab19 [ 134.245382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 134.246680] RSP: 002b:00007f1b405c0218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 134.247232] RAX: 0000000000000001 RBX: 00007f1b4315df68 RCX: 00007f1b4304ab19 [ 134.247744] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1b4315df6c [ 134.248277] RBP: 00007f1b4315df60 R08: 000000000000000e R09: 0000000000000000 [ 134.248794] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f1b4315df6c [ 134.249309] R13: 00007fffc2a56fff R14: 00007f1b405c0300 R15: 0000000000022000 [ 134.249826] [ 134.249999] irq event stamp: 1496 [ 134.250251] hardirqs last enabled at (1495): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 134.250924] hardirqs last disabled at (1496): [] __schedule+0x1225/0x2470 [ 134.251523] softirqs last enabled at (1074): [] __irq_exit_rcu+0x11b/0x180 [ 134.252149] softirqs last disabled at (895): [] __irq_exit_rcu+0x11b/0x180 [ 134.252767] ---[ end trace 0000000000000000 ]--- [ 134.255466] audit: type=1400 audit(1664148046.675:9): avc: denied { create } for pid=3883 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 VM DIAGNOSIS: 23:20:46 Registers: info registers vcpu 0 RAX=0000000000000073 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b17e1 RDI=ffffffff87645be0 RBP=ffffffff87645ba0 RSP=ffff8880176cf698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000073 R11=0000000000000001 R12=0000000000000073 R13=ffffffff87645ba0 R14=0000000000000010 R15=ffffffff822b17d0 RIP=ffffffff822b1839 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1b405c0700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb155cdc6f4 CR3=0000000037fe8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f1b431317c0 00007f1b431317c8 YMM02=0000000000000000 0000000000000000 00007f1b431317e0 00007f1b431317c0 YMM03=0000000000000000 0000000000000000 00007f1b431317c8 00007f1b431317c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000080000000 RBX=0000000000000000 RCX=ffffffff817eca3f RDX=ffff888040a85040 RSI=0000000000000000 RDI=0000000000000005 RBP=ffff88800ed4bb80 RSP=ffff8880189a7dc0 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=ffff8880189a7e18 R14=ffff88800ed4bb90 R15=0000000000000000 RIP=ffffffff81460af7 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f5e3ce828c0 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6a2a0a2610 CR3=000000001bb20000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 696c61766e49002f YMM01=0000000000000000 0000000000000000 000000696e656420 737365636341002f YMM02=0000000000000000 0000000000000000 ffffff0f0e0d0c0b 0a09080706050403 YMM03=0000000000000000 0000000000000000 696e656420737365 636341002f737973 YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 ffffffffffff0000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000006561 6124242f6867632f YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 49006d756e203c20 69000a313a56000a YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000