Warning: Permanently added '[localhost]:28771' (ECDSA) to the list of known hosts. 2022/09/30 05:09:33 fuzzer started 2022/09/30 05:09:33 dialing manager at localhost:40535 syzkaller login: [ 46.742623] cgroup: Unknown subsys name 'net' [ 46.842076] cgroup: Unknown subsys name 'rlimit' 2022/09/30 05:09:47 syscalls: 2215 2022/09/30 05:09:47 code coverage: enabled 2022/09/30 05:09:47 comparison tracing: enabled 2022/09/30 05:09:47 extra coverage: enabled 2022/09/30 05:09:47 setuid sandbox: enabled 2022/09/30 05:09:47 namespace sandbox: enabled 2022/09/30 05:09:47 Android sandbox: enabled 2022/09/30 05:09:47 fault injection: enabled 2022/09/30 05:09:47 leak checking: enabled 2022/09/30 05:09:47 net packet injection: enabled 2022/09/30 05:09:47 net device setup: enabled 2022/09/30 05:09:47 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 05:09:47 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 05:09:47 USB emulation: enabled 2022/09/30 05:09:47 hci packet injection: enabled 2022/09/30 05:09:47 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 05:09:47 802.15.4 emulation: enabled 2022/09/30 05:09:47 fetching corpus: 50, signal 35897/37530 (executing program) 2022/09/30 05:09:47 fetching corpus: 100, signal 43066/46235 (executing program) 2022/09/30 05:09:48 fetching corpus: 150, signal 48715/53275 (executing program) 2022/09/30 05:09:48 fetching corpus: 200, signal 56019/61836 (executing program) 2022/09/30 05:09:48 fetching corpus: 250, signal 60855/67850 (executing program) 2022/09/30 05:09:48 fetching corpus: 300, signal 67137/75203 (executing program) 2022/09/30 05:09:48 fetching corpus: 350, signal 70899/80062 (executing program) 2022/09/30 05:09:48 fetching corpus: 400, signal 73986/84211 (executing program) 2022/09/30 05:09:48 fetching corpus: 450, signal 77774/88908 (executing program) 2022/09/30 05:09:48 fetching corpus: 500, signal 79878/92037 (executing program) 2022/09/30 05:09:48 fetching corpus: 550, signal 83957/96903 (executing program) 2022/09/30 05:09:49 fetching corpus: 600, signal 87879/101494 (executing program) 2022/09/30 05:09:49 fetching corpus: 650, signal 90185/104657 (executing program) 2022/09/30 05:09:49 fetching corpus: 700, signal 93010/108179 (executing program) 2022/09/30 05:09:49 fetching corpus: 750, signal 96501/112318 (executing program) 2022/09/30 05:09:49 fetching corpus: 800, signal 98533/115082 (executing program) 2022/09/30 05:09:49 fetching corpus: 850, signal 101112/118251 (executing program) 2022/09/30 05:09:49 fetching corpus: 900, signal 103548/121287 (executing program) 2022/09/30 05:09:49 fetching corpus: 950, signal 104730/123246 (executing program) 2022/09/30 05:09:49 fetching corpus: 1000, signal 106662/125770 (executing program) 2022/09/30 05:09:50 fetching corpus: 1050, signal 108647/128265 (executing program) 2022/09/30 05:09:50 fetching corpus: 1100, signal 110492/130682 (executing program) 2022/09/30 05:09:50 fetching corpus: 1150, signal 112623/133213 (executing program) 2022/09/30 05:09:50 fetching corpus: 1200, signal 115501/136279 (executing program) 2022/09/30 05:09:50 fetching corpus: 1250, signal 117498/138590 (executing program) 2022/09/30 05:09:50 fetching corpus: 1300, signal 119109/140605 (executing program) 2022/09/30 05:09:50 fetching corpus: 1350, signal 120168/142161 (executing program) 2022/09/30 05:09:50 fetching corpus: 1400, signal 121831/144151 (executing program) 2022/09/30 05:09:51 fetching corpus: 1450, signal 123344/146021 (executing program) 2022/09/30 05:09:51 fetching corpus: 1500, signal 125499/148292 (executing program) 2022/09/30 05:09:51 fetching corpus: 1550, signal 126686/149862 (executing program) 2022/09/30 05:09:51 fetching corpus: 1600, signal 127434/151107 (executing program) 2022/09/30 05:09:51 fetching corpus: 1650, signal 128875/152843 (executing program) 2022/09/30 05:09:51 fetching corpus: 1700, signal 131100/155116 (executing program) 2022/09/30 05:09:51 fetching corpus: 1750, signal 133018/157252 (executing program) 2022/09/30 05:09:51 fetching corpus: 1800, signal 134001/158522 (executing program) 2022/09/30 05:09:51 fetching corpus: 1850, signal 135126/159910 (executing program) 2022/09/30 05:09:52 fetching corpus: 1900, signal 136861/161643 (executing program) 2022/09/30 05:09:52 fetching corpus: 1950, signal 138136/163009 (executing program) 2022/09/30 05:09:52 fetching corpus: 2000, signal 139171/164298 (executing program) 2022/09/30 05:09:52 fetching corpus: 2050, signal 140255/165632 (executing program) 2022/09/30 05:09:52 fetching corpus: 2100, signal 141340/166843 (executing program) 2022/09/30 05:09:52 fetching corpus: 2150, signal 142631/168199 (executing program) 2022/09/30 05:09:52 fetching corpus: 2200, signal 144107/169548 (executing program) 2022/09/30 05:09:52 fetching corpus: 2250, signal 145172/170708 (executing program) 2022/09/30 05:09:52 fetching corpus: 2300, signal 145889/171687 (executing program) 2022/09/30 05:09:53 fetching corpus: 2350, signal 147207/172940 (executing program) 2022/09/30 05:09:53 fetching corpus: 2400, signal 148559/174169 (executing program) 2022/09/30 05:09:53 fetching corpus: 2450, signal 149517/175410 (executing program) 2022/09/30 05:09:53 fetching corpus: 2500, signal 150340/176319 (executing program) 2022/09/30 05:09:53 fetching corpus: 2550, signal 153365/178438 (executing program) 2022/09/30 05:09:53 fetching corpus: 2600, signal 155294/179822 (executing program) 2022/09/30 05:09:53 fetching corpus: 2650, signal 156016/180643 (executing program) 2022/09/30 05:09:53 fetching corpus: 2700, signal 157330/181763 (executing program) 2022/09/30 05:09:54 fetching corpus: 2750, signal 158414/182685 (executing program) 2022/09/30 05:09:54 fetching corpus: 2800, signal 160107/183888 (executing program) 2022/09/30 05:09:54 fetching corpus: 2850, signal 160742/184601 (executing program) 2022/09/30 05:09:54 fetching corpus: 2900, signal 162040/185621 (executing program) 2022/09/30 05:09:54 fetching corpus: 2950, signal 162780/186325 (executing program) 2022/09/30 05:09:54 fetching corpus: 3000, signal 163402/186990 (executing program) 2022/09/30 05:09:54 fetching corpus: 3050, signal 164501/187840 (executing program) 2022/09/30 05:09:54 fetching corpus: 3100, signal 165240/188501 (executing program) 2022/09/30 05:09:55 fetching corpus: 3150, signal 166292/189299 (executing program) 2022/09/30 05:09:55 fetching corpus: 3200, signal 167142/190013 (executing program) 2022/09/30 05:09:55 fetching corpus: 3250, signal 167901/190591 (executing program) 2022/09/30 05:09:55 fetching corpus: 3300, signal 168859/191283 (executing program) 2022/09/30 05:09:55 fetching corpus: 3350, signal 169448/191803 (executing program) 2022/09/30 05:09:55 fetching corpus: 3400, signal 170434/192555 (executing program) 2022/09/30 05:09:55 fetching corpus: 3450, signal 171246/193072 (executing program) 2022/09/30 05:09:55 fetching corpus: 3500, signal 172107/193627 (executing program) 2022/09/30 05:09:55 fetching corpus: 3550, signal 172872/194192 (executing program) 2022/09/30 05:09:56 fetching corpus: 3600, signal 173849/194759 (executing program) 2022/09/30 05:09:56 fetching corpus: 3650, signal 175216/195375 (executing program) 2022/09/30 05:09:56 fetching corpus: 3700, signal 175790/195774 (executing program) 2022/09/30 05:09:56 fetching corpus: 3750, signal 176433/196198 (executing program) 2022/09/30 05:09:56 fetching corpus: 3800, signal 177720/196839 (executing program) 2022/09/30 05:09:56 fetching corpus: 3850, signal 178609/197296 (executing program) 2022/09/30 05:09:56 fetching corpus: 3900, signal 178945/197615 (executing program) 2022/09/30 05:09:56 fetching corpus: 3950, signal 179612/198022 (executing program) 2022/09/30 05:09:57 fetching corpus: 4000, signal 180385/198374 (executing program) 2022/09/30 05:09:57 fetching corpus: 4050, signal 181024/198731 (executing program) 2022/09/30 05:09:57 fetching corpus: 4100, signal 181429/199043 (executing program) 2022/09/30 05:09:57 fetching corpus: 4150, signal 181923/199350 (executing program) 2022/09/30 05:09:57 fetching corpus: 4200, signal 182484/199637 (executing program) 2022/09/30 05:09:57 fetching corpus: 4250, signal 183092/199949 (executing program) 2022/09/30 05:09:57 fetching corpus: 4300, signal 183744/200230 (executing program) 2022/09/30 05:09:57 fetching corpus: 4350, signal 184391/200510 (executing program) 2022/09/30 05:09:57 fetching corpus: 4400, signal 185040/200783 (executing program) 2022/09/30 05:09:58 fetching corpus: 4450, signal 185903/201056 (executing program) 2022/09/30 05:09:58 fetching corpus: 4500, signal 186459/201302 (executing program) 2022/09/30 05:09:58 fetching corpus: 4550, signal 186858/201475 (executing program) 2022/09/30 05:09:58 fetching corpus: 4600, signal 187635/201700 (executing program) 2022/09/30 05:09:58 fetching corpus: 4650, signal 188400/201911 (executing program) 2022/09/30 05:09:58 fetching corpus: 4700, signal 188792/202094 (executing program) 2022/09/30 05:09:58 fetching corpus: 4750, signal 189534/202273 (executing program) 2022/09/30 05:09:58 fetching corpus: 4800, signal 189907/202407 (executing program) 2022/09/30 05:09:58 fetching corpus: 4850, signal 190484/202560 (executing program) 2022/09/30 05:09:58 fetching corpus: 4871, signal 190739/202716 (executing program) 2022/09/30 05:09:58 fetching corpus: 4871, signal 190739/202835 (executing program) 2022/09/30 05:09:58 fetching corpus: 4871, signal 190739/202884 (executing program) 2022/09/30 05:09:58 fetching corpus: 4871, signal 190739/202884 (executing program) 2022/09/30 05:10:01 starting 8 fuzzer processes 05:10:01 executing program 0: sendmsg$DEVLINK_CMD_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x6c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @pci={{0x8}, {0x11}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20004040}, 0x400c000) r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_PORT_SET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xcc, r0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x6}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x6, 0x4, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x6}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x6, 0x4, 0x2}}]}, 0xcc}, 0x1, 0x0, 0x0, 0x4050}, 0x4001) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x111800, 0x0) sendmsg$NL80211_CMD_DEL_PMKSA(r1, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x58, 0x0, 0x400, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x5}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x4}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x5f}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x5}, @NL80211_ATTR_PMK={0x14, 0xfe, "cca1ce595c8e8a34042bc24bb53a1d10"}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x57}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x32}]}, 0x58}, 0x1, 0x0, 0x0, 0x801}, 0xd4d2156fa285b240) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), r1) sendmsg$NL80211_CMD_GET_KEY(r1, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x7c, r3, 0x300, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xbd, 0x2f}}}}, [@NL80211_ATTR_KEY_SEQ={0x14, 0xa, "356c4d403585333dedbfd79731719fb0"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x4}, @NL80211_ATTR_KEY_SEQ={0xf, 0xa, "429e1c03cdc4513e813717"}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "2ace421469"}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "9061f15752"}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4004011}, 0x4048080) sendmsg$NL80211_CMD_RADAR_DETECT(r2, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x2c, r3, 0x100, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x7fffffff}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4c004}, 0x4000) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000740)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000007c0), r2) sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000940)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000900)={&(0x7f0000000800)={0x100, r5, 0x400, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void, @val={0xc, 0x99, {0x0, 0x1d}}}}, [@NL80211_ATTR_VENDOR_DATA={0xa1, 0xc5, "e8d7c60789dcab26f7211f12ab5599bc5575f4965a632789ce48f0e8cefd1f41d92e8fb0e9a4707de1d9f2c891b5a9fbe1cd4d1b8322be45e5c7329628efcc1831d48585c4866e0b8ddd60b727585831167b503d57552ae4f4fffbe487b802c875a79fbdab6fbfdec5d22ed96653a3c032be93e71210e5583122fe201f203f1fafb5a1be53ada98eb827052250c741078d87d8f79162945aef4a6b772f"}, @NL80211_ATTR_VENDOR_DATA={0x3a, 0xc5, "040735aedc98974d5875ffeb7c7d9aa398e9897a900a010fed45fefa65ad287122016950c7b74681243013d9696e8359f21db8b241b8"}]}, 0x100}, 0x1, 0x0, 0x0, 0x8080}, 0x4000000) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000009c0), r4) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000a00)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000001b40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001b00)={&(0x7f0000000a40)={0x1084, r6, 0x2, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x2, 0x40}}}}, [@fils_params=[@NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0xc9d}, @NL80211_ATTR_FILS_ERP_RRK={0x1004, 0xfc, "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"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x4}], @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0x10, {0x6, 0x5, 0xc2d, 0xc3}}}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}, @NL80211_ATTR_WIPHY_FREQ_HINT={0x8}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0x1, {0xe39, 0x800, 0x4, 0x4}}}, @crypto_settings=[@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}], @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xe1}, @NL80211_ATTR_DISABLE_HT={0x4}]}, 0x1084}, 0x1, 0x0, 0x0, 0x84}, 0xc0) r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001bc0), r4) sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000001d80)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001d40)={&(0x7f0000001c00)={0x120, r8, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@ETHTOOL_A_STRSET_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_STRSET_STRINGSETS={0xcc, 0x2, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}]}]}, 0x120}, 0x1, 0x0, 0x0, 0x4004}, 0x4040810) sendmsg$NL80211_CMD_SET_CQM(0xffffffffffffffff, &(0x7f0000001ec0)={&(0x7f0000001dc0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001e80)={&(0x7f0000001e00)={0x6c, r5, 0x10, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_CQM={0xc, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x35d}]}, @NL80211_ATTR_CQM={0x4c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x2}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x33}, @NL80211_ATTR_CQM_RSSI_THOLD={0x28, 0x1, [0x3, 0x3f, 0x455, 0x80000000, 0x3f, 0x5a58, 0x8000, 0x3f, 0x75bc]}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x6}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x80}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40000}, 0x2000c8f0) r9 = socket(0x22, 0xa, 0x800) syz_genetlink_get_family_id$nl80211(&(0x7f0000001f00), r9) 05:10:01 executing program 2: r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @empty}, &(0x7f0000000040)=0x10, 0x80800) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000080)={0x0, 0x1, r0, 0xffffff71}) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x111083, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r1, 0x810c9365, &(0x7f0000000100)={{0x5, 0xfffffffc}, 0x100, './file0\x00'}) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0) fcntl$setflags(0xffffffffffffffff, 0x2, 0x0) r2 = fsmount(r1, 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000240)='yeah\x00', 0x5) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000280)={0x3, 0x9, 0x9, 0x0, 0x7}) ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000000300)={0x7fff, 0xc17, 0x5, 0x3, 0x5}) clone3(&(0x7f00000004c0)={0xcc00, &(0x7f0000000340)=0xffffffffffffffff, &(0x7f0000000380), &(0x7f00000003c0), {0x3f}, &(0x7f0000000400)=""/7, 0x7, &(0x7f0000000440)=""/38, &(0x7f0000000480)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0], 0x8, {r2}}, 0x58) preadv(r3, &(0x7f0000000840)=[{&(0x7f0000000540)=""/71, 0x47}, {&(0x7f00000005c0)=""/254, 0xfe}, {&(0x7f00000006c0)}, {&(0x7f0000000700)=""/52, 0x34}, {&(0x7f0000000740)=""/237, 0xed}], 0x5, 0x40, 0x6) r4 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x8) ioctl$FS_IOC_GETVERSION(r4, 0x80087601, &(0x7f00000008c0)) r5 = mq_open(&(0x7f0000000900)='yeah\x00', 0x2, 0x14, &(0x7f0000000940)={0xfffffffffffffc1d, 0x8, 0x1, 0x70}) ioctl$INCFS_IOC_PERMIT_FILL(r2, 0x40046721, &(0x7f0000000980)={r5}) syz_open_dev$vcsu(&(0x7f00000009c0), 0x0, 0xfd3300ac9743fd8f) flistxattr(r2, &(0x7f0000000a00)=""/102, 0x66) sendmsg$NL80211_CMD_STOP_NAN(r1, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x14, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x40000010) socketpair(0xb, 0x5, 0x7, &(0x7f0000000b80)) 05:10:01 executing program 1: ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x4}}, './file0\x00'}) ioctl$EVIOCGKEY(r0, 0x80404518, &(0x7f0000000040)=""/149) ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000140)={0x37f, 0x8, '\x00', 0x0, &(0x7f0000000100)=[0x0]}) r1 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f0000000200)=0x6) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) fcntl$addseals(r4, 0x409, 0x4) ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000000240)=""/103) r5 = syz_open_pts(r3, 0x10000) ioctl$TIOCL_UNBLANKSCREEN(r5, 0x541c, &(0x7f00000002c0)) r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x202000, 0x113) mkdirat(r6, &(0x7f0000000340)='./file0\x00', 0x0) r7 = open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x3) write(r7, &(0x7f00000003c0)="613fdf05e6b5034761c15897ba198d0a7021beec1e08e7749ecae65bb0b37ad512f2664d8459c16ff221bc05432983b80efe4317272ce2a0776a26e9b26f7420f44eea57b67ea2167a0bbd0105861d98ceb7448f5df7caa71b655b2f72671e4e67b6f39859b0614052042f6e5c66a51a51886fdf5811617a38d15ed96c5aa3ef1682a72f25e9c8e286c4c3476637de67bfb2526f30aeefd9119a7b8ebe7294739fbdc6342c888e38", 0xa8) r8 = pidfd_getfd(r3, r7, 0x0) renameat(r3, &(0x7f0000000480)='\x00', r8, &(0x7f00000004c0)='./file0\x00') sendmsg$NFNL_MSG_ACCT_DEL(r8, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x52012010}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x78, 0x3, 0x7, 0x5, 0x0, 0x0, {0x6, 0x0, 0xa}, [@NFACCT_FLAGS={0x8}, @NFACCT_PKTS={0xc}, @NFACCT_FILTER={0x3c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xfffffffa}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x1}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x9}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x7}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x9}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x6}, @NFACCT_FILTER_VALUE={0x8}]}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x5}]}, 0x78}, 0x1, 0x0, 0x0, 0x40}, 0x0) connect$inet6(r8, &(0x7f0000000640)={0xa, 0x4e24, 0x8, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x6}, 0x1c) 05:10:01 executing program 3: ioctl$FAT_IOCTL_GET_ATTRIBUTES(0xffffffffffffffff, 0x80047210, &(0x7f0000000000)) ioctl$F2FS_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0xf50f, 0x0) getsockopt$WPAN_WANTLQI(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4) ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r1 = dup3(r0, r0, 0x80000) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r2, {0x1}}, './file0\x00'}) ioctl$FS_IOC_MEASURE_VERITY(r1, 0xc0046686, &(0x7f0000000180)={0x2, 0x9c, "8399316ca672a8a7112da8a88c5ddd25dcc57c5f8724c07ef08765b25815b1b2201aec9b034a41586f35f93d2cc6c60530c3bcd3ae16c0159cf5c75fe883de762f6696d3808ed0a9a0ce124aebb4a332a44cbff850108b9fd5ac414b4ea5a42af828b690ed170d133c065eda56ce44d4af9a87823bf5e50aa29d6c0d4050c4bb1a75c50019f475b0ba301d4984a8e2ce35057caa162496d950033082"}) sendmsg$SMC_PNETID_GET(r0, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x40, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'macvlan1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x30048890}, 0x1) r4 = perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x2d, 0x6, 0x32, 0x0, 0x5a9, 0x40020, 0xa, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0xfffff0bc, 0x2, @perf_bp={&(0x7f0000000340), 0x1}, 0x12a0, 0xc30, 0x2, 0x5, 0xfff, 0x3, 0x4, 0x0, 0xbd, 0x0, 0x9}, 0xffffffffffffffff, 0x7, r3, 0x2) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='timerslack_ns\x00') ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000440)={{0x1, 0x1, 0x18, r4, {0xffff4d19}}, './file0\x00'}) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x81, 0x3f, 0x5, 0xff, 0x0, 0x8, 0x88407, 0x6, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x101, 0x0, @perf_config_ext={0xbc, 0x6}, 0x408, 0x4, 0x1598, 0x5, 0x0, 0xf0b9, 0x0, 0x0, 0x3, 0x0, 0x4493}, 0x0, 0x0, 0xffffffffffffffff, 0x1) write$binfmt_aout(r2, &(0x7f0000000500)={{0x10b, 0x9, 0x80, 0x38, 0x217, 0x8, 0x93, 0x3f}, "a11d5cbcd410efe139fcc11689278df129fb9f311ff603a9c7db9ced22fdc388180760c5419544f72c1d189f586da1bec60df4c6f4c5c7fb1aab6b4b673e4e1147a9f9e945481d223953df08f1ae269067760bedcef4e2fb1a4e1746be4d831eaf8dabbec5e6f19db7fcd66851caa599341319975275295193f1b4dc0c5f903d684a7035603e6920e1dcd05b3c57721d67eeb74b4d4eead03618197359a42f61cab83a2530dc94c02560088d817b94b05a21d807d416ebb2a2852c45ee7866b4e2572885b1a47ba833dfdf035b8f5aa2d3da01db9af7fc49c92137e01e250a064bd5d26e3e55e65ca4e288fe0a50", ['\x00']}, 0x20e) socket$packet(0x11, 0x2, 0x300) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000740)={{0x1, 0x1, 0x18, r0}, './file0/file0\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r5, 0xc08c5334, &(0x7f0000000780)={0xcb, 0x8000, 0x0, 'queue0\x00'}) removexattr(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880)=@random={'trusted.', '-@-\x00'}) 05:10:01 executing program 4: getsockopt$IP_VS_SO_GET_DAEMON(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000), &(0x7f0000000040)=0x30) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000080)={'team_slave_1\x00', {0x2, 0x0, @empty}}) ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f00000000c0)="189482ea0a832d82ec6b82321b76f6f49f5f0460e3096275b947824f698ef121d6c63b7c52dc3b680c0f90") ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000100)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f0000000140)) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000240)={{0x1, 0x1, 0x18, r1, {0x4}}, './file0\x00'}) r3 = syz_io_uring_complete(0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r3, 0xc0189374, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {0x9914}}, './file0\x00'}) statx(r2, &(0x7f0000000300)='./file0\x00', 0x400, 0x100, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0}) quotactl(0x3, &(0x7f00000002c0)='./file0\x00', r5, &(0x7f0000000440)="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") ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000540)={0x1, 0x7fff, 0x1, 0x1, 0x9, [{0xffffffff7fffffff, 0x92ad, 0x6, '\x00', 0xb80}, {0x9e1c, 0x3, 0x4, '\x00', 0x100}, {0x5, 0x9, 0x8, '\x00', 0x200c}, {0x5, 0xff, 0x0, '\x00', 0x2080}, {0x8, 0xced, 0xfffffffffffffffa, '\x00', 0x30a}, {0x6, 0x534800000000000, 0x7, '\x00', 0x90c}, {0x5886, 0x464, 0x2}, {0xfffffffffffffeff, 0x9, 0x76, '\x00', 0x4}, {0x1, 0xfffffffffffffffb, 0x3f, '\x00', 0x388c}]}) ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000780)={0x1843, 0x1000, 0x2, 0x0, 0x9, "a97ba10783543399"}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f00000007c0)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) ioctl$FS_IOC_GETFSLABEL(r6, 0x81009431, &(0x7f0000000800)) ioctl$BTRFS_IOC_WAIT_SYNC(r2, 0x40089416, &(0x7f0000000900)) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r4, 0x8008f513, &(0x7f0000000940)) ioctl$KDSIGACCEPT(r6, 0x4b4e, 0x8) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f00000010c0)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001080)={&(0x7f0000000f80)={0xd0, 0x0, 0x4, 0x70bd27, 0x25dfdbff, {}, [@HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x800}, 0x20040010) 05:10:01 executing program 5: r0 = semget(0x0, 0x4, 0x4) semctl$IPC_RMID(r0, 0x0, 0x0) semctl$GETPID(r0, 0x2, 0xb, &(0x7f0000000000)=""/166) r1 = semget(0x1, 0x1, 0x80) semctl$IPC_RMID(r1, 0x0, 0x0) r2 = semget$private(0x0, 0x1, 0x88) semtimedop(r2, &(0x7f00000000c0)=[{0x1, 0x401}, {0x4, 0x3, 0x1000}, {0x4, 0x7fff, 0x1800}], 0x3, &(0x7f0000000100)) r3 = semget$private(0x0, 0x0, 0x0) semctl$IPC_STAT(r3, 0x0, 0x2, &(0x7f0000000140)=""/4096) semctl$SEM_INFO(r1, 0x1, 0x13, &(0x7f0000001140)=""/4096) semctl$IPC_RMID(r1, 0x0, 0x0) semctl$SEM_INFO(r2, 0x4, 0x13, &(0x7f0000002140)=""/165) semctl$IPC_STAT(r1, 0x0, 0x2, &(0x7f0000002200)=""/118) semget$private(0x0, 0x3, 0x404) semtimedop(r3, &(0x7f0000002280)=[{0x3, 0xc00, 0x2800}, {0x0, 0x6, 0x800}, {0x1, 0x2, 0x1800}], 0x3, &(0x7f00000022c0)={0x0, 0x989680}) semctl$GETZCNT(r1, 0x2, 0xf, &(0x7f0000002300)=""/7) semtimedop(r0, &(0x7f0000002340)=[{0x2, 0x8000, 0x1800}, {0x0, 0xffff, 0x800}, {0x4, 0x7, 0x800}, {0x1, 0x1000, 0x1800}, {0x5, 0x8000, 0x1000}, {0x0, 0x164, 0x1800}, {0x0, 0x3ff, 0x1000}, {0x0, 0x800, 0x800}], 0x8, &(0x7f0000002380)) r4 = semget$private(0x0, 0x4, 0x50) semctl$GETPID(r4, 0x2, 0xb, &(0x7f00000023c0)=""/4096) semctl$SETALL(r2, 0x0, 0x11, &(0x7f00000033c0)=[0x7, 0x8001, 0x81, 0x8, 0x7, 0xde, 0x81]) 05:10:01 executing program 6: prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000000)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000040)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000080)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f00000000c0)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000100)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000140)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000180)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f00000001c0)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000200)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000240)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000280)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f00000002c0)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000300)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000340)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000380)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f00000003c0)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000400)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000440)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000480)) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f00000004c0)) [ 74.085225] audit: type=1400 audit(1664514601.440:6): avc: denied { execmem } for pid=285 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 05:10:01 executing program 7: ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000000)={'vlan0\x00'}) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4048850}, 0x84) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='fd/4\x00') r2 = syz_open_dev$tty1(0xc, 0x4, 0x3) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f00000001c0)) getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000200), &(0x7f0000000240)=0x4) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x82) r5 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x3) ioctl$TIOCGSOFTCAR(r5, 0x5419, &(0x7f00000002c0)) rseq(&(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x2, 0x400, 0x1}, 0x4}, 0x20, 0x0, 0x0) ioctl$FS_IOC_FIEMAP(r4, 0xc020660b, &(0x7f0000000380)={0x1000, 0x9, 0x5, 0x0, 0x7, [{0x1, 0x6, 0x100000001, '\x00', 0x8}, {0x3, 0x388e9074, 0xfcc, '\x00', 0x2c00}, {0x2357, 0x7, 0x3ff, '\x00', 0x8}, {0x6, 0x6, 0x1, '\x00', 0x280}, {0x5, 0x1, 0xb220, '\x00', 0x150a}, {0x3f, 0x8, 0x8, '\x00', 0x402}, {0x400, 0x4, 0x77, '\x00', 0x3a08}]}) rseq(&(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x3, 0x6, 0x0, 0x7}, 0x2}, 0x20, 0x1, 0x0) rseq(&(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={0x0, 0x8, 0x6, 0xe00000, 0x80}, 0x7}, 0x20, 0x1, 0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0x8c, 0x0, 0x100, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xffffe53f}]}, @TIPC_NLA_LINK={0x58, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x8080}, 0x20040001) rseq(&(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={0x0, 0x2, 0x7f, 0x0, 0x2}, 0x1}, 0x20, 0x0, 0x0) recvmmsg$unix(r0, &(0x7f0000002b80)=[{{&(0x7f0000000840)=@abs, 0x6e, &(0x7f0000000900)=[{&(0x7f00000008c0)=""/3, 0x3}], 0x1, &(0x7f0000000940)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x158}}, {{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000ac0)=""/55, 0x37}], 0x1, &(0x7f0000000b40)=[@cred={{0x1c}}, @rights={{0x10}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000000bc0), 0x6e, &(0x7f0000001400)=[{&(0x7f0000000c40)=""/134, 0x86}, {&(0x7f0000000d00)=""/68, 0x44}, {&(0x7f0000000d80)=""/227, 0xe3}, {&(0x7f0000000e80)=""/210, 0xd2}, {&(0x7f0000000f80)=""/162, 0xa2}, {&(0x7f0000001040)=""/225, 0xe1}, {&(0x7f0000001140)=""/137, 0x89}, {&(0x7f0000001200)=""/232, 0xe8}, {&(0x7f0000001300)=""/122, 0x7a}, {&(0x7f0000001380)=""/114, 0x72}], 0xa, &(0x7f00000014c0)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x90}}, {{&(0x7f0000001580), 0x6e, &(0x7f0000001880)=[{&(0x7f0000001600)=""/57, 0x39}, {&(0x7f0000001640)=""/199, 0xc7}, {&(0x7f0000001740)=""/151, 0x97}, {&(0x7f0000001800)=""/101, 0x65}], 0x4}}, {{0x0, 0x0, &(0x7f00000029c0)=[{&(0x7f00000018c0)=""/38, 0x26}, {&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f0000002900)=""/133, 0x85}], 0x3, &(0x7f0000002a00)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x178}}], 0x5, 0x100, &(0x7f0000002cc0)) ioctl$TIOCPKT(r7, 0x5420, &(0x7f0000002d00)=0x1c000000) ftruncate(r6, 0x3) [ 75.445151] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 75.446990] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 75.450289] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 75.451459] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 75.453090] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 75.454578] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 75.483756] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 75.486464] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 75.489327] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 75.492434] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 75.494478] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 75.496000] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 75.497705] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 75.497826] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 75.500760] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 75.501324] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 75.503696] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 75.505290] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 75.507214] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 75.509041] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 75.514187] Bluetooth: hci0: HCI_REQ-0x0c1a [ 75.519730] Bluetooth: hci1: HCI_REQ-0x0c1a [ 75.529232] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 75.529276] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 75.532160] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 75.533460] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 75.535018] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 75.536937] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 75.540105] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 75.541375] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 75.541531] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 75.542686] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 75.547526] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 75.551606] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 75.553152] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 75.554866] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 75.555545] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 75.556413] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 75.557393] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 75.559122] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 75.559651] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 75.561130] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 75.562877] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 75.564662] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 75.568700] Bluetooth: hci5: HCI_REQ-0x0c1a [ 75.574700] Bluetooth: hci2: HCI_REQ-0x0c1a [ 75.587136] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 75.588533] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 75.590147] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 75.591392] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 75.593185] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 75.595724] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 75.600262] Bluetooth: hci7: HCI_REQ-0x0c1a [ 75.601122] Bluetooth: hci6: HCI_REQ-0x0c1a [ 75.602163] Bluetooth: hci4: HCI_REQ-0x0c1a [ 75.624677] Bluetooth: hci3: HCI_REQ-0x0c1a [ 77.567265] Bluetooth: hci1: command 0x0409 tx timeout [ 77.568150] Bluetooth: hci0: command 0x0409 tx timeout [ 77.630891] Bluetooth: hci3: command 0x0409 tx timeout [ 77.631484] Bluetooth: hci4: command 0x0409 tx timeout [ 77.631986] Bluetooth: hci6: command 0x0409 tx timeout [ 77.632427] Bluetooth: hci7: command 0x0409 tx timeout [ 77.632925] Bluetooth: hci2: command 0x0409 tx timeout [ 77.633359] Bluetooth: hci5: command 0x0409 tx timeout [ 79.615029] Bluetooth: hci0: command 0x041b tx timeout [ 79.615476] Bluetooth: hci1: command 0x041b tx timeout [ 79.678927] Bluetooth: hci5: command 0x041b tx timeout [ 79.679395] Bluetooth: hci2: command 0x041b tx timeout [ 79.679768] Bluetooth: hci7: command 0x041b tx timeout [ 79.680185] Bluetooth: hci6: command 0x041b tx timeout [ 79.680587] Bluetooth: hci4: command 0x041b tx timeout [ 79.680987] Bluetooth: hci3: command 0x041b tx timeout [ 81.662848] Bluetooth: hci1: command 0x040f tx timeout [ 81.663307] Bluetooth: hci0: command 0x040f tx timeout [ 81.726922] Bluetooth: hci3: command 0x040f tx timeout [ 81.727370] Bluetooth: hci4: command 0x040f tx timeout [ 81.727741] Bluetooth: hci6: command 0x040f tx timeout [ 81.728157] Bluetooth: hci7: command 0x040f tx timeout [ 81.728555] Bluetooth: hci2: command 0x040f tx timeout [ 81.728953] Bluetooth: hci5: command 0x040f tx timeout [ 83.710856] Bluetooth: hci0: command 0x0419 tx timeout [ 83.711295] Bluetooth: hci1: command 0x0419 tx timeout [ 83.774944] Bluetooth: hci5: command 0x0419 tx timeout [ 83.775353] Bluetooth: hci2: command 0x0419 tx timeout [ 83.775723] Bluetooth: hci7: command 0x0419 tx timeout [ 83.776523] Bluetooth: hci6: command 0x0419 tx timeout [ 83.776918] Bluetooth: hci4: command 0x0419 tx timeout [ 83.777285] Bluetooth: hci3: command 0x0419 tx timeout 05:10:57 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="3801000010000100000000000000000020010000000000000000000000000001ac1414bb00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="ff0100000000000000000000000000010000000032000000ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000004800020078636861636861323000"/240], 0x138}}, 0x0) 05:10:57 executing program 7: r0 = memfd_create(&(0x7f0000000100)='/d#>\xbb\xb3~\x89\xa4O{\xc3\xad *Zn\xad\x11\xf2u\xe3\xf5\xbd\x1d\xa5\xeb\xee\xeee\xf4\xaf\xf0\x81\xea|f\x1c\xe0\xc1\xd1\x19cr\xa1\x01\xc3g\x10#\xa1\xfa\xb2\xe7\xa4+\x9e\xd7\xa2\x04y\xc1\xcf-V\xc0\x18Ls\xe2I\x19:\xe7\xc6F\x96xM\x1a\x00\x00\x00\x9c*\x03\x1f\x94\x9a\xf1\xcb\xc9\xf1\x16I\x85\xc8x\xe0\xc7\xc7z\xfa\t\x85\t\xfc\xcc\v\xce\x1b\xa2\x1b\xb4+\xe7\xb4M\xf4\xa4\xef\x0eW\x7f\x13\xa9>\xcf;+-\xf1gT\xd0\xcc\xff#\x1b\xbc\xe2\x06\xdf\xc2\xcb \x149n\xf24x\xe4\x9b\xab\xf7E\x1c\xb2,\xec[|\xcc\x85{\xb3\x98\x139\xc4F\x9fE\xa7*\xa2\xc8\xa9H\xed\x9b@\x8bH\xe5\xb5\xa7\xae\x11\xa7N\x00\x00\x04\x00\x00\x00\x00\x00\x00', 0x4) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_COPY(r1, 0x4b3a, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_COPY(r2, 0x4b3a, 0x0) ioctl$VT_OPENQRY(r2, 0x5600, &(0x7f0000000200)) read(r1, &(0x7f0000000000)=""/237, 0xed) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xc, 0x401a012, r0, 0x0) 05:10:58 executing program 6: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x5}}, './file0\x00'}) ioctl$sock_bt_hci(r1, 0x800448d3, &(0x7f0000000040)) 05:10:58 executing program 6: syz_io_uring_setup(0x659e, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0) poll(0xfffffffffffffffe, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000003780), 0xffffffffffffffff) sendmsg$NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) syz_mount_image$vfat(&(0x7f0000003980), &(0x7f00000039c0)='./file0\x00', 0x0, 0x0, &(0x7f0000003a80), 0x1006021, &(0x7f0000000140)=ANY=[@ANYBLOB='dont_hash,uid>', @ANYRESDEC=r0, @ANYBLOB="bd00f6bc858512a2a0775906d61629c1f8543bb2fa7e613e711ed309e8cf04935050a85e8411f3a97984ceee6218edc65bdd35ef3b151077e170fee60e0409dde26be5cac494"]) 05:10:58 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x82) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmstat\x00', 0x0, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_COPY(r2, 0x4b3a, 0x0) ioctl$TCGETA(r0, 0x5405, &(0x7f0000000040)) r3 = memfd_secret(0x80000) dup2(r2, r3) sendfile(r0, r1, 0x0, 0x10000027f) 05:10:58 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x82) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmstat\x00', 0x0, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_COPY(r2, 0x4b3a, 0x0) ioctl$TCGETA(r0, 0x5405, &(0x7f0000000040)) r3 = memfd_secret(0x80000) dup2(r2, r3) sendfile(r0, r1, 0x0, 0x10000027f) 05:10:58 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x82) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmstat\x00', 0x0, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_COPY(r2, 0x4b3a, 0x0) ioctl$TCGETA(r0, 0x5405, &(0x7f0000000040)) r3 = memfd_secret(0x80000) dup2(r2, r3) sendfile(r0, r1, 0x0, 0x10000027f) 05:10:59 executing program 7: r0 = memfd_create(&(0x7f0000000100)='/d#>\xbb\xb3~\x89\xa4O{\xc3\xad *Zn\xad\x11\xf2u\xe3\xf5\xbd\x1d\xa5\xeb\xee\xeee\xf4\xaf\xf0\x81\xea|f\x1c\xe0\xc1\xd1\x19cr\xa1\x01\xc3g\x10#\xa1\xfa\xb2\xe7\xa4+\x9e\xd7\xa2\x04y\xc1\xcf-V\xc0\x18Ls\xe2I\x19:\xe7\xc6F\x96xM\x1a\x00\x00\x00\x9c*\x03\x1f\x94\x9a\xf1\xcb\xc9\xf1\x16I\x85\xc8x\xe0\xc7\xc7z\xfa\t\x85\t\xfc\xcc\v\xce\x1b\xa2\x1b\xb4+\xe7\xb4M\xf4\xa4\xef\x0eW\x7f\x13\xa9>\xcf;+-\xf1gT\xd0\xcc\xff#\x1b\xbc\xe2\x06\xdf\xc2\xcb \x149n\xf24x\xe4\x9b\xab\xf7E\x1c\xb2,\xec[|\xcc\x85{\xb3\x98\x139\xc4F\x9fE\xa7*\xa2\xc8\xa9H\xed\x9b@\x8bH\xe5\xb5\xa7\xae\x11\xa7N\x00\x00\x04\x00\x00\x00\x00\x00\x00', 0x4) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_COPY(r1, 0x4b3a, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_COPY(r2, 0x4b3a, 0x0) ioctl$VT_OPENQRY(r2, 0x5600, &(0x7f0000000200)) read(r1, &(0x7f0000000000)=""/237, 0xed) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xc, 0x401a012, r0, 0x0) [ 132.990605] audit: type=1400 audit(1664514660.345:7): avc: denied { open } for pid=3985 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 132.995936] audit: type=1400 audit(1664514660.350:8): avc: denied { kernel } for pid=3985 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 05:11:19 executing program 4: syz_emit_ethernet(0x46, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x0) syz_emit_ethernet(0xbc, &(0x7f00000001c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa001100d4354d5aff33b6424cb5df800c41f4be4ce7378340861e2c80166a2e973d24549c5871475360ea24873506bf1702311eac68f53cb8445cef3eaa186f08c1e058df34cda86ad1a2382c1cf2fe4fef7b4dcdc7a57048a233f305af4286c47f98e5ad251f2897b08d7df1064f94efa29c00f18c06f6ee71c5066722d5d0db172b196145edeaebe06d1c335c2a04c177375b12b40aedb6b5b9824bb0131f143e143a9bc7769d69403330e9351267e1"], &(0x7f0000000280)={0x1, 0x2, [0x59e, 0x10c, 0xe91, 0x88]}) syz_emit_ethernet(0x32, &(0x7f0000000000)={@random="94eecf8dded2", @remote, @val={@val={0x9100, 0x0, 0x0, 0x3}, {0x8100, 0x1, 0x1, 0x4}}, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @multicast, @empty, @empty, @broadcast}}}}, &(0x7f0000000040)={0x1, 0x3, [0xaf9, 0xda0, 0xf8c, 0x7c4]}) syz_extract_tcp_res(&(0x7f00000002c0)={0x41424344, 0x41424344}, 0xfffff00e, 0x10001) write$tun(0xffffffffffffffff, &(0x7f0000000300)={@val={0x0, 0x18}, @void, @eth={@random="d76ccc944938", @broadcast, @void, {@ipv6={0x86dd, @tcp={0x7, 0x6, "6e955b", 0x261, 0x6, 0xff, @ipv4={'\x00', '\xff\xff', @broadcast}, @empty, {[@srh={0xff, 0x8, 0x4, 0x4, 0x6, 0x0, 0x573, [@remote, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}, @routing={0x2b, 0x10, 0x1, 0x0, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, @rand_addr=' \x01\x00', @mcast2, @loopback, @loopback, @dev={0xfe, 0x80, '\x00', 0x34}, @dev={0xfe, 0x80, '\x00', 0x3a}]}, @hopopts={0x76, 0x6, '\x00', [@calipso={0x7, 0x30, {0x3, 0xa, 0x81, 0x8, [0x100000000, 0x0, 0x3ff, 0x3bf, 0x80]}}]}, @srh={0x2c, 0xe, 0x4, 0x7, 0x40, 0x38, 0x4cbb, [@mcast1, @dev={0xfe, 0x80, '\x00', 0x20}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @ipv4={'\x00', '\xff\xff', @empty}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1, @mcast1]}, @fragment={0x0, 0x0, 0x6, 0x1, 0x0, 0x4, 0x66}, @routing={0x32, 0xe, 0x2, 0x4, 0x0, [@mcast1, @private1, @dev={0xfe, 0x80, '\x00', 0x2b}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, '\x00', 0x1a}, @ipv4={'\x00', '\xff\xff', @remote}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}, @hopopts={0x1b, 0x0, '\x00', [@jumbo={0xc2, 0x4, 0x1000}]}, @dstopts={0x0, 0x0, '\x00', [@jumbo]}], {{0x4e21, 0x4e22, 0x41424344, r0, 0x1, 0x0, 0x6, 0x1, 0x7, 0x0, 0x0, {[@nop]}}, {"389ec541bfa575fec8642d82927085d1ba747630dd9a4bb5721de5394e2f53ffdd"}}}}}}}}, 0x29b) syz_emit_ethernet(0xbd, &(0x7f0000000100)={@multicast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3d}, @val={@void, {0x8100, 0x7, 0x1, 0x1}}, {@mpls_uc={0x8847, {[{0x4e88, 0x0, 0x1}, {0x8001, 0x0, 0x1}, {0x8c11}, {0x5, 0x0, 0x1}, {0x4437, 0x0, 0x1}], @generic="d7d9d4e92399e9423017b48cb574515eb8cea4474ec905dd57d84c85fb825677c89d3bfe8c1caf5250e87cf6df3fca433080c728891ea50d385d8ae8d22012091810affa5251673a969c7c091ef9054c5861f9c41da3ef0802dc833a60be5cf5b34c3eefa9da312f9bb604712a499b85effedc4d195f1be9b85e5f1d2d2ad7f71d30286c4c0a6766c98a939cb1da785b1ce7eaeeecb813"}}}}, 0x0) recvfrom(0xffffffffffffffff, &(0x7f00000005c0)=""/63, 0x3f, 0x2002, &(0x7f0000000600)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x41, 0x4, 0x9}}, 0x80) 05:11:19 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000040)=""/32, 0x20}, {&(0x7f00000001c0)=""/27, 0x1b}, {&(0x7f0000000200)=""/7, 0x7}, {&(0x7f0000000300)=""/127, 0x7f}, {&(0x7f0000000240)=""/34, 0x22}, {&(0x7f0000000380)=""/197, 0xc5}], 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYBLOB="1c00000000ffff000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}, 0x12001) sendfile(0xffffffffffffffff, r1, &(0x7f0000000800)=0x6, 0x0) syz_open_procfs(r0, &(0x7f0000000600)='attr/fscreate\x00') syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) setxattr$trusted_overlay_opaque(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700), &(0x7f0000000740), 0x2, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000000)='./file0\x00', 0x535081, 0x0) r3 = epoll_create(0x7fffffff) r4 = openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000040)) r5 = syz_open_dev$rtc(&(0x7f00000007c0), 0x0, 0x0) ioctl$RTC_ALM_SET(r5, 0x40247007, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)={0x8}) ioctl$RNDADDTOENTCNT(0xffffffffffffffff, 0x40045201, &(0x7f0000000780)=0xffff) fsetxattr$security_capability(r5, &(0x7f0000000640), &(0x7f0000000680)=@v2={0x2000000, [{0x0, 0x100}, {0x9, 0x200}]}, 0x14, 0x2) r6 = inotify_init1(0x0) dup2(r6, r2) 05:11:19 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x82) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmstat\x00', 0x0, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_COPY(r2, 0x4b3a, 0x0) ioctl$TCGETA(r0, 0x5405, &(0x7f0000000040)) r3 = memfd_secret(0x80000) dup2(r2, r3) sendfile(r0, r1, 0x0, 0x10000027f) 05:11:19 executing program 2: r0 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @empty}, &(0x7f0000000040)=0x10, 0x80800) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000080)={0x0, 0x1, r0, 0xffffff71}) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x111083, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r1, 0x810c9365, &(0x7f0000000100)={{0x5, 0xfffffffc}, 0x100, './file0\x00'}) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0) fcntl$setflags(0xffffffffffffffff, 0x2, 0x0) r2 = fsmount(r1, 0x1, 0x0) write$tcp_congestion(r2, &(0x7f0000000240)='yeah\x00', 0x5) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000280)={0x3, 0x9, 0x9, 0x0, 0x7}) ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000000300)={0x7fff, 0xc17, 0x5, 0x3, 0x5}) clone3(&(0x7f00000004c0)={0xcc00, &(0x7f0000000340)=0xffffffffffffffff, &(0x7f0000000380), &(0x7f00000003c0), {0x3f}, &(0x7f0000000400)=""/7, 0x7, &(0x7f0000000440)=""/38, &(0x7f0000000480)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0], 0x8, {r2}}, 0x58) preadv(r3, &(0x7f0000000840)=[{&(0x7f0000000540)=""/71, 0x47}, {&(0x7f00000005c0)=""/254, 0xfe}, {&(0x7f00000006c0)}, {&(0x7f0000000700)=""/52, 0x34}, {&(0x7f0000000740)=""/237, 0xed}], 0x5, 0x40, 0x6) r4 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x8) ioctl$FS_IOC_GETVERSION(r4, 0x80087601, &(0x7f00000008c0)) r5 = mq_open(&(0x7f0000000900)='yeah\x00', 0x2, 0x14, &(0x7f0000000940)={0xfffffffffffffc1d, 0x8, 0x1, 0x70}) ioctl$INCFS_IOC_PERMIT_FILL(r2, 0x40046721, &(0x7f0000000980)={r5}) syz_open_dev$vcsu(&(0x7f00000009c0), 0x0, 0xfd3300ac9743fd8f) flistxattr(r2, &(0x7f0000000a00)=""/102, 0x66) sendmsg$NL80211_CMD_STOP_NAN(r1, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x14, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x40000010) socketpair(0xb, 0x5, 0x7, &(0x7f0000000b80)) 05:11:19 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0x0, &(0x7f00000001c0)='\x1f') 05:11:19 executing program 1: r0 = semget(0x0, 0x4, 0x4) semctl$IPC_RMID(r0, 0x0, 0x0) semctl$GETPID(r0, 0x2, 0xb, &(0x7f0000000000)=""/166) r1 = semget(0x1, 0x1, 0x80) semctl$IPC_RMID(r1, 0x0, 0x0) r2 = semget$private(0x0, 0x1, 0x88) semtimedop(r2, &(0x7f00000000c0)=[{0x1, 0x401}, {0x4, 0x3, 0x1000}, {0x4, 0x7fff, 0x1800}], 0x3, &(0x7f0000000100)) r3 = semget$private(0x0, 0x0, 0x0) semctl$IPC_STAT(r3, 0x0, 0x2, &(0x7f0000000140)=""/4096) semctl$SEM_INFO(r1, 0x1, 0x13, &(0x7f0000001140)=""/4096) semctl$IPC_RMID(r1, 0x0, 0x0) semctl$SEM_INFO(r2, 0x4, 0x13, &(0x7f0000002140)=""/165) semctl$IPC_STAT(r1, 0x0, 0x2, &(0x7f0000002200)=""/118) semget$private(0x0, 0x3, 0x404) semtimedop(r3, &(0x7f0000002280)=[{0x3, 0xc00, 0x2800}, {0x0, 0x6, 0x800}, {0x1, 0x2, 0x1800}], 0x3, &(0x7f00000022c0)={0x0, 0x989680}) semctl$GETZCNT(r1, 0x2, 0xf, &(0x7f0000002300)=""/7) semtimedop(r0, &(0x7f0000002340)=[{0x2, 0x8000, 0x1800}, {0x0, 0xffff, 0x800}, {0x4, 0x7, 0x800}, {0x1, 0x1000, 0x1800}, {0x5, 0x8000, 0x1000}, {0x0, 0x164, 0x1800}, {0x0, 0x3ff, 0x1000}, {0x0, 0x800, 0x800}], 0x8, &(0x7f0000002380)) r4 = semget$private(0x0, 0x4, 0x50) semctl$GETPID(r4, 0x2, 0xb, &(0x7f00000023c0)=""/4096) semctl$SETALL(r2, 0x0, 0x11, &(0x7f00000033c0)=[0x7, 0x8001, 0x81, 0x8, 0x7, 0xde, 0x81]) 05:11:19 executing program 7: r0 = memfd_create(&(0x7f0000000100)='/d#>\xbb\xb3~\x89\xa4O{\xc3\xad *Zn\xad\x11\xf2u\xe3\xf5\xbd\x1d\xa5\xeb\xee\xeee\xf4\xaf\xf0\x81\xea|f\x1c\xe0\xc1\xd1\x19cr\xa1\x01\xc3g\x10#\xa1\xfa\xb2\xe7\xa4+\x9e\xd7\xa2\x04y\xc1\xcf-V\xc0\x18Ls\xe2I\x19:\xe7\xc6F\x96xM\x1a\x00\x00\x00\x9c*\x03\x1f\x94\x9a\xf1\xcb\xc9\xf1\x16I\x85\xc8x\xe0\xc7\xc7z\xfa\t\x85\t\xfc\xcc\v\xce\x1b\xa2\x1b\xb4+\xe7\xb4M\xf4\xa4\xef\x0eW\x7f\x13\xa9>\xcf;+-\xf1gT\xd0\xcc\xff#\x1b\xbc\xe2\x06\xdf\xc2\xcb \x149n\xf24x\xe4\x9b\xab\xf7E\x1c\xb2,\xec[|\xcc\x85{\xb3\x98\x139\xc4F\x9fE\xa7*\xa2\xc8\xa9H\xed\x9b@\x8bH\xe5\xb5\xa7\xae\x11\xa7N\x00\x00\x04\x00\x00\x00\x00\x00\x00', 0x4) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_COPY(r1, 0x4b3a, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_COPY(r2, 0x4b3a, 0x0) ioctl$VT_OPENQRY(r2, 0x5600, &(0x7f0000000200)) read(r1, &(0x7f0000000000)=""/237, 0xed) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xc, 0x401a012, r0, 0x0) 05:11:19 executing program 5: r0 = semget(0x0, 0x4, 0x4) semctl$IPC_RMID(r0, 0x0, 0x0) semctl$GETPID(r0, 0x2, 0xb, &(0x7f0000000000)=""/166) r1 = semget(0x1, 0x1, 0x80) semctl$IPC_RMID(r1, 0x0, 0x0) r2 = semget$private(0x0, 0x1, 0x88) semtimedop(r2, &(0x7f00000000c0)=[{0x1, 0x401}, {0x4, 0x3, 0x1000}, {0x4, 0x7fff, 0x1800}], 0x3, &(0x7f0000000100)) r3 = semget$private(0x0, 0x0, 0x0) semctl$IPC_STAT(r3, 0x0, 0x2, &(0x7f0000000140)=""/4096) semctl$SEM_INFO(r1, 0x1, 0x13, &(0x7f0000001140)=""/4096) semctl$IPC_RMID(r1, 0x0, 0x0) semctl$SEM_INFO(r2, 0x4, 0x13, &(0x7f0000002140)=""/165) semctl$IPC_STAT(r1, 0x0, 0x2, &(0x7f0000002200)=""/118) semget$private(0x0, 0x3, 0x404) semtimedop(r3, &(0x7f0000002280)=[{0x3, 0xc00, 0x2800}, {0x0, 0x6, 0x800}, {0x1, 0x2, 0x1800}], 0x3, &(0x7f00000022c0)={0x0, 0x989680}) semctl$GETZCNT(r1, 0x2, 0xf, &(0x7f0000002300)=""/7) semtimedop(r0, &(0x7f0000002340)=[{0x2, 0x8000, 0x1800}, {0x0, 0xffff, 0x800}, {0x4, 0x7, 0x800}, {0x1, 0x1000, 0x1800}, {0x5, 0x8000, 0x1000}, {0x0, 0x164, 0x1800}, {0x0, 0x3ff, 0x1000}, {0x0, 0x800, 0x800}], 0x8, &(0x7f0000002380)) r4 = semget$private(0x0, 0x4, 0x50) semctl$GETPID(r4, 0x2, 0xb, &(0x7f00000023c0)=""/4096) semctl$SETALL(r2, 0x0, 0x11, &(0x7f00000033c0)=[0x7, 0x8001, 0x81, 0x8, 0x7, 0xde, 0x81]) [ 152.256860] binfmt_misc: Unknown parameter '' [ 152.259755] ------------[ cut here ]------------ [ 152.259777] [ 152.259783] ====================================================== [ 152.259786] WARNING: possible circular locking dependency detected [ 152.259791] 6.0.0-rc7-next-20220929 #1 Not tainted [ 152.259797] ------------------------------------------------------ [ 152.259801] syz-executor.0/3995 is trying to acquire lock: [ 152.259808] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 152.259849] [ 152.259849] but task is already holding lock: [ 152.259851] ffff8880401d6820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 152.259878] [ 152.259878] which lock already depends on the new lock. [ 152.259878] [ 152.259881] [ 152.259881] the existing dependency chain (in reverse order) is: [ 152.259885] [ 152.259885] -> #3 (&ctx->lock){....}-{2:2}: [ 152.259899] _raw_spin_lock+0x2a/0x40 [ 152.259910] __perf_event_task_sched_out+0x53b/0x18d0 [ 152.259921] __schedule+0xedd/0x2470 [ 152.259935] schedule+0xda/0x1b0 [ 152.259949] exit_to_user_mode_prepare+0x114/0x1a0 [ 152.259961] syscall_exit_to_user_mode+0x19/0x40 [ 152.259974] do_syscall_64+0x48/0x90 [ 152.259992] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 152.260004] [ 152.260004] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 152.260018] _raw_spin_lock_nested+0x30/0x40 [ 152.260029] raw_spin_rq_lock_nested+0x1e/0x30 [ 152.260042] task_fork_fair+0x63/0x4d0 [ 152.260058] sched_cgroup_fork+0x3d0/0x540 [ 152.260072] copy_process+0x4183/0x6e20 [ 152.260083] kernel_clone+0xe7/0x890 [ 152.260093] user_mode_thread+0xad/0xf0 [ 152.260103] rest_init+0x24/0x250 [ 152.260114] arch_call_rest_init+0xf/0x14 [ 152.260131] start_kernel+0x4c6/0x4eb [ 152.260146] secondary_startup_64_no_verify+0xe0/0xeb [ 152.260160] [ 152.260160] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 152.260173] _raw_spin_lock_irqsave+0x39/0x60 [ 152.260184] try_to_wake_up+0xab/0x1930 [ 152.260197] up+0x75/0xb0 [ 152.260211] __up_console_sem+0x6e/0x80 [ 152.260228] console_unlock+0x46a/0x590 [ 152.260243] vt_ioctl+0x2822/0x2ca0 [ 152.260256] tty_ioctl+0x785/0x16b0 [ 152.260267] __x64_sys_ioctl+0x19a/0x210 [ 152.260281] do_syscall_64+0x3b/0x90 [ 152.260298] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 152.260310] [ 152.260310] -> #0 ((console_sem).lock){....}-{2:2}: [ 152.260324] __lock_acquire+0x2a02/0x5e70 [ 152.260341] lock_acquire+0x1a2/0x530 [ 152.260356] _raw_spin_lock_irqsave+0x39/0x60 [ 152.260367] down_trylock+0xe/0x70 [ 152.260381] __down_trylock_console_sem+0x3b/0xd0 [ 152.260397] vprintk_emit+0x16b/0x560 [ 152.260413] vprintk+0x84/0xa0 [ 152.260429] _printk+0xba/0xf1 [ 152.260441] report_bug.cold+0x72/0xab [ 152.260457] handle_bug+0x3c/0x70 [ 152.260473] exc_invalid_op+0x14/0x50 [ 152.260490] asm_exc_invalid_op+0x16/0x20 [ 152.260501] group_sched_out.part.0+0x2c7/0x460 [ 152.260519] ctx_sched_out+0x8f1/0xc10 [ 152.260536] __perf_event_task_sched_out+0x6d0/0x18d0 [ 152.260547] __schedule+0xedd/0x2470 [ 152.260561] schedule+0xda/0x1b0 [ 152.260574] exit_to_user_mode_prepare+0x114/0x1a0 [ 152.260585] syscall_exit_to_user_mode+0x19/0x40 [ 152.260597] do_syscall_64+0x48/0x90 [ 152.260614] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 152.260626] [ 152.260626] other info that might help us debug this: [ 152.260626] [ 152.260629] Chain exists of: [ 152.260629] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 152.260629] [ 152.260644] Possible unsafe locking scenario: [ 152.260644] [ 152.260646] CPU0 CPU1 [ 152.260648] ---- ---- [ 152.260651] lock(&ctx->lock); [ 152.260657] lock(&rq->__lock); [ 152.260663] lock(&ctx->lock); [ 152.260669] lock((console_sem).lock); [ 152.260675] [ 152.260675] *** DEADLOCK *** [ 152.260675] [ 152.260677] 2 locks held by syz-executor.0/3995: [ 152.260684] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 152.260713] #1: ffff8880401d6820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 152.260739] [ 152.260739] stack backtrace: [ 152.260742] CPU: 1 PID: 3995 Comm: syz-executor.0 Not tainted 6.0.0-rc7-next-20220929 #1 [ 152.260756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 152.260764] Call Trace: [ 152.260767] [ 152.260771] dump_stack_lvl+0x8b/0xb3 [ 152.260789] check_noncircular+0x263/0x2e0 [ 152.260806] ? format_decode+0x26c/0xb50 [ 152.260822] ? print_circular_bug+0x450/0x450 [ 152.260839] ? enable_ptr_key_workfn+0x20/0x20 [ 152.260856] ? format_decode+0x26c/0xb50 [ 152.260873] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 152.260891] __lock_acquire+0x2a02/0x5e70 [ 152.260912] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 152.260935] lock_acquire+0x1a2/0x530 [ 152.260951] ? down_trylock+0xe/0x70 [ 152.260968] ? lock_release+0x750/0x750 [ 152.260989] ? vprintk+0x84/0xa0 [ 152.261006] _raw_spin_lock_irqsave+0x39/0x60 [ 152.261018] ? down_trylock+0xe/0x70 [ 152.261033] down_trylock+0xe/0x70 [ 152.261049] ? vprintk+0x84/0xa0 [ 152.261066] __down_trylock_console_sem+0x3b/0xd0 [ 152.261083] vprintk_emit+0x16b/0x560 [ 152.261102] vprintk+0x84/0xa0 [ 152.261119] _printk+0xba/0xf1 [ 152.261130] ? record_print_text.cold+0x16/0x16 [ 152.261146] ? report_bug.cold+0x66/0xab [ 152.261164] ? group_sched_out.part.0+0x2c7/0x460 [ 152.261182] report_bug.cold+0x72/0xab [ 152.261209] handle_bug+0x3c/0x70 [ 152.261227] exc_invalid_op+0x14/0x50 [ 152.261244] asm_exc_invalid_op+0x16/0x20 [ 152.261257] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 152.261278] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 152.261290] RSP: 0018:ffff8880407d7c48 EFLAGS: 00010006 [ 152.261299] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 152.261306] RDX: ffff888017569ac0 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 152.261314] RBP: ffff8880410a05c8 R08: 0000000000000005 R09: 0000000000000001 [ 152.261322] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff8880401d6800 [ 152.261330] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 152.261341] ? group_sched_out.part.0+0x2c7/0x460 [ 152.261361] ? group_sched_out.part.0+0x2c7/0x460 [ 152.261380] ctx_sched_out+0x8f1/0xc10 [ 152.261400] __perf_event_task_sched_out+0x6d0/0x18d0 [ 152.261414] ? lock_is_held_type+0xd7/0x130 [ 152.261428] ? __perf_cgroup_move+0x160/0x160 [ 152.261438] ? set_next_entity+0x304/0x550 [ 152.261456] ? update_curr+0x267/0x740 [ 152.261474] ? lock_is_held_type+0xd7/0x130 [ 152.261488] __schedule+0xedd/0x2470 [ 152.261505] ? io_schedule_timeout+0x150/0x150 [ 152.261522] ? rcu_read_lock_sched_held+0x3e/0x80 [ 152.261542] schedule+0xda/0x1b0 [ 152.261557] exit_to_user_mode_prepare+0x114/0x1a0 [ 152.261569] syscall_exit_to_user_mode+0x19/0x40 [ 152.261583] do_syscall_64+0x48/0x90 [ 152.261600] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 152.261614] RIP: 0033:0x7fb0bb484b19 [ 152.261622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 152.261633] RSP: 002b:00007fb0b89fa218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 152.261644] RAX: 0000000000000001 RBX: 00007fb0bb597f68 RCX: 00007fb0bb484b19 [ 152.261651] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb0bb597f6c [ 152.261658] RBP: 00007fb0bb597f60 R08: 000000000000000e R09: 0000000000000000 [ 152.261666] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fb0bb597f6c [ 152.261673] R13: 00007fff9041960f R14: 00007fb0b89fa300 R15: 0000000000022000 [ 152.261686] [ 152.315635] WARNING: CPU: 1 PID: 3995 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 152.315670] Modules linked in: [ 152.315678] CPU: 1 PID: 3995 Comm: syz-executor.0 Not tainted 6.0.0-rc7-next-20220929 #1 [ 152.315692] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 152.315700] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 152.315721] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 152.315733] RSP: 0018:ffff8880407d7c48 EFLAGS: 00010006 [ 152.315742] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 05:11:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r2, 0x40505331, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x6}) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xa0014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r0, 0x0, 0x100000) r3 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000380)=ANY=[@ANYBLOB="0100000001000000180000003280baf9f83d19c3121020f4cd8d22e86d022634546cf73119f07bbebe3bad6f83294587b457f664f11b1565c65d1a8344f5b44bdb2a3b1b17863dca5be00d57cff77d546f6c8e73c391809ab8891fadd449ce0ca6d50e0a316952502f76e9b13f732e2782ff521b44787baf320e35210f946d34f82e5d7da649b2bd6de9a174a7587d332a6b04392e3d5e56fe", @ANYRES32=r3, @ANYBLOB="00000049000200000000a45218f9c3c8cbdc857beef5fe5b53cf6702934f"]) perf_event_open$cgroup(&(0x7f00000001c0)={0x3, 0x80, 0x86, 0x20, 0xf9, 0x2, 0x0, 0x2, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0x7}, 0x10008, 0xf38, 0x1000, 0x2, 0x100000000, 0x6, 0x26c, 0x0, 0x7, 0x0, 0x8}, r0, 0x10, r3, 0x2) [ 152.315750] RDX: ffff888017569ac0 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 152.315759] RBP: ffff8880410a05c8 R08: 0000000000000005 R09: 0000000000000001 [ 152.315767] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff8880401d6800 05:11:19 executing program 1: r0 = semget(0x0, 0x4, 0x4) semctl$IPC_RMID(r0, 0x0, 0x0) semctl$GETPID(r0, 0x2, 0xb, &(0x7f0000000000)=""/166) r1 = semget(0x1, 0x1, 0x80) semctl$IPC_RMID(r1, 0x0, 0x0) r2 = semget$private(0x0, 0x1, 0x88) semtimedop(r2, &(0x7f00000000c0)=[{0x1, 0x401}, {0x4, 0x3, 0x1000}, {0x4, 0x7fff, 0x1800}], 0x3, &(0x7f0000000100)) r3 = semget$private(0x0, 0x0, 0x0) semctl$IPC_STAT(r3, 0x0, 0x2, &(0x7f0000000140)=""/4096) semctl$SEM_INFO(r1, 0x1, 0x13, &(0x7f0000001140)=""/4096) semctl$IPC_RMID(r1, 0x0, 0x0) semctl$SEM_INFO(r2, 0x4, 0x13, &(0x7f0000002140)=""/165) semctl$IPC_STAT(r1, 0x0, 0x2, &(0x7f0000002200)=""/118) semget$private(0x0, 0x3, 0x404) semtimedop(r3, &(0x7f0000002280)=[{0x3, 0xc00, 0x2800}, {0x0, 0x6, 0x800}, {0x1, 0x2, 0x1800}], 0x3, &(0x7f00000022c0)={0x0, 0x989680}) semctl$GETZCNT(r1, 0x2, 0xf, &(0x7f0000002300)=""/7) semtimedop(r0, &(0x7f0000002340)=[{0x2, 0x8000, 0x1800}, {0x0, 0xffff, 0x800}, {0x4, 0x7, 0x800}, {0x1, 0x1000, 0x1800}, {0x5, 0x8000, 0x1000}, {0x0, 0x164, 0x1800}, {0x0, 0x3ff, 0x1000}, {0x0, 0x800, 0x800}], 0x8, &(0x7f0000002380)) r4 = semget$private(0x0, 0x4, 0x50) semctl$GETPID(r4, 0x2, 0xb, &(0x7f00000023c0)=""/4096) semctl$SETALL(r2, 0x0, 0x11, &(0x7f00000033c0)=[0x7, 0x8001, 0x81, 0x8, 0x7, 0xde, 0x81]) [ 152.315775] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 152.315785] FS: 00007fb0b89fa700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 152.315798] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 152.315807] CR2: 0000000000000000 CR3: 0000000040426000 CR4: 0000000000350ee0 [ 152.315815] Call Trace: [ 152.315819] [ 152.315825] ctx_sched_out+0x8f1/0xc10 [ 152.315846] __perf_event_task_sched_out+0x6d0/0x18d0 [ 152.315862] ? lock_is_held_type+0xd7/0x130 [ 152.315878] ? __perf_cgroup_move+0x160/0x160 [ 152.315889] ? set_next_entity+0x304/0x550 [ 152.315908] ? update_curr+0x267/0x740 [ 152.315927] ? lock_is_held_type+0xd7/0x130 [ 152.315942] __schedule+0xedd/0x2470 [ 152.315959] ? io_schedule_timeout+0x150/0x150 [ 152.315976] ? rcu_read_lock_sched_held+0x3e/0x80 [ 152.315997] schedule+0xda/0x1b0 [ 152.316013] exit_to_user_mode_prepare+0x114/0x1a0 [ 152.316026] syscall_exit_to_user_mode+0x19/0x40 [ 152.316041] do_syscall_64+0x48/0x90 [ 152.316059] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 152.316074] RIP: 0033:0x7fb0bb484b19 [ 152.316083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 152.316095] RSP: 002b:00007fb0b89fa218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 152.316107] RAX: 0000000000000001 RBX: 00007fb0bb597f68 RCX: 00007fb0bb484b19 [ 152.316114] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb0bb597f6c [ 152.316122] RBP: 00007fb0bb597f60 R08: 000000000000000e R09: 0000000000000000 [ 152.316130] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fb0bb597f6c [ 152.316138] R13: 00007fff9041960f R14: 00007fb0b89fa300 R15: 0000000000022000 [ 152.316151] [ 152.316155] irq event stamp: 566 [ 152.316159] hardirqs last enabled at (565): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 152.316175] hardirqs last disabled at (566): [] __schedule+0x1225/0x2470 [ 152.316193] softirqs last enabled at (454): [] __irq_exit_rcu+0x11b/0x180 [ 152.316214] softirqs last disabled at (409): [] __irq_exit_rcu+0x11b/0x180 [ 152.316234] ---[ end trace 0000000000000000 ]--- [ 152.493819] hrtimer: interrupt took 36799 ns VM DIAGNOSIS: 05:11:19 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=0000000000000001 RCX=0000000000000001 RDX=1ffff11008006fa3 RSI=ffff888040037f28 RDI=ffff888040037d20 RBP=ffff888040037f48 RSP=ffff888040037c50 R8 =ffffffff85eeff9a R9 =ffffffff85eeff9e R10=ffffed1008006fa7 R11=ffff888040037d10 R12=ffff888040037d11 R13=ffff888040037d30 R14=ffff888040037cd0 R15=0000000000000007 RIP=ffffffff8111b73c RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555556c6b400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb5539ee547 CR3=000000001bc52000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM01=0000000000000000 0000000000000000 2525252525252525 2525252525252525 YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000032 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff8880407d7690 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000032 R11=0000000000000001 R12=0000000000000032 R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0 RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb0b89fa700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000000000000 CR3=0000000040426000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fb0bb56b7c0 00007fb0bb56b7c8 YMM02=0000000000000000 0000000000000000 00007fb0bb56b7e0 00007fb0bb56b7c0 YMM03=0000000000000000 0000000000000000 00007fb0bb56b7c8 00007fb0bb56b7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000