Warning: Permanently added '[localhost]:17309' (ECDSA) to the list of known hosts. 2022/09/30 13:09:46 fuzzer started 2022/09/30 13:09:46 dialing manager at localhost:40535 syzkaller login: [ 40.065616] cgroup: Unknown subsys name 'net' [ 40.155281] cgroup: Unknown subsys name 'rlimit' 2022/09/30 13:10:03 syscalls: 2215 2022/09/30 13:10:03 code coverage: enabled 2022/09/30 13:10:03 comparison tracing: enabled 2022/09/30 13:10:03 extra coverage: enabled 2022/09/30 13:10:03 setuid sandbox: enabled 2022/09/30 13:10:03 namespace sandbox: enabled 2022/09/30 13:10:03 Android sandbox: enabled 2022/09/30 13:10:03 fault injection: enabled 2022/09/30 13:10:03 leak checking: enabled 2022/09/30 13:10:03 net packet injection: enabled 2022/09/30 13:10:03 net device setup: enabled 2022/09/30 13:10:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 13:10:03 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 13:10:03 USB emulation: enabled 2022/09/30 13:10:03 hci packet injection: enabled 2022/09/30 13:10:03 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 13:10:03 802.15.4 emulation: enabled 2022/09/30 13:10:03 fetching corpus: 50, signal 23167/24968 (executing program) 2022/09/30 13:10:03 fetching corpus: 100, signal 38019/41357 (executing program) 2022/09/30 13:10:03 fetching corpus: 150, signal 44417/49222 (executing program) 2022/09/30 13:10:03 fetching corpus: 200, signal 51835/58001 (executing program) 2022/09/30 13:10:03 fetching corpus: 250, signal 58356/65783 (executing program) 2022/09/30 13:10:03 fetching corpus: 300, signal 63243/71911 (executing program) 2022/09/30 13:10:03 fetching corpus: 350, signal 67950/77785 (executing program) 2022/09/30 13:10:04 fetching corpus: 400, signal 71751/82691 (executing program) 2022/09/30 13:10:04 fetching corpus: 450, signal 74632/86707 (executing program) 2022/09/30 13:10:04 fetching corpus: 500, signal 77392/90557 (executing program) 2022/09/30 13:10:04 fetching corpus: 550, signal 80612/94771 (executing program) 2022/09/30 13:10:04 fetching corpus: 600, signal 82601/97844 (executing program) 2022/09/30 13:10:04 fetching corpus: 650, signal 85222/101525 (executing program) 2022/09/30 13:10:04 fetching corpus: 700, signal 87208/104535 (executing program) 2022/09/30 13:10:05 fetching corpus: 750, signal 93202/110919 (executing program) 2022/09/30 13:10:05 fetching corpus: 800, signal 95290/113881 (executing program) 2022/09/30 13:10:05 fetching corpus: 850, signal 97653/117006 (executing program) 2022/09/30 13:10:05 fetching corpus: 900, signal 99793/119972 (executing program) 2022/09/30 13:10:05 fetching corpus: 950, signal 101675/122698 (executing program) 2022/09/30 13:10:05 fetching corpus: 1000, signal 104719/126272 (executing program) 2022/09/30 13:10:05 fetching corpus: 1050, signal 106716/128987 (executing program) 2022/09/30 13:10:05 fetching corpus: 1100, signal 108360/131375 (executing program) 2022/09/30 13:10:05 fetching corpus: 1150, signal 110195/133885 (executing program) 2022/09/30 13:10:06 fetching corpus: 1200, signal 111107/135633 (executing program) 2022/09/30 13:10:06 fetching corpus: 1250, signal 113465/138505 (executing program) 2022/09/30 13:10:06 fetching corpus: 1300, signal 116124/141538 (executing program) 2022/09/30 13:10:06 fetching corpus: 1350, signal 117553/143641 (executing program) 2022/09/30 13:10:06 fetching corpus: 1400, signal 119119/145818 (executing program) 2022/09/30 13:10:06 fetching corpus: 1450, signal 121150/148321 (executing program) 2022/09/30 13:10:06 fetching corpus: 1500, signal 122717/150383 (executing program) 2022/09/30 13:10:06 fetching corpus: 1550, signal 124278/152396 (executing program) 2022/09/30 13:10:06 fetching corpus: 1600, signal 126244/154755 (executing program) 2022/09/30 13:10:07 fetching corpus: 1650, signal 127166/156305 (executing program) 2022/09/30 13:10:07 fetching corpus: 1700, signal 128823/158308 (executing program) 2022/09/30 13:10:07 fetching corpus: 1750, signal 130304/160194 (executing program) 2022/09/30 13:10:07 fetching corpus: 1800, signal 131867/162154 (executing program) 2022/09/30 13:10:07 fetching corpus: 1850, signal 133234/163891 (executing program) 2022/09/30 13:10:07 fetching corpus: 1900, signal 135669/166385 (executing program) 2022/09/30 13:10:07 fetching corpus: 1950, signal 136633/167824 (executing program) 2022/09/30 13:10:07 fetching corpus: 2000, signal 137782/169380 (executing program) 2022/09/30 13:10:07 fetching corpus: 2050, signal 138702/170760 (executing program) 2022/09/30 13:10:08 fetching corpus: 2100, signal 140094/172440 (executing program) 2022/09/30 13:10:08 fetching corpus: 2150, signal 141343/174052 (executing program) 2022/09/30 13:10:08 fetching corpus: 2200, signal 142751/175655 (executing program) 2022/09/30 13:10:08 fetching corpus: 2250, signal 143768/177001 (executing program) 2022/09/30 13:10:08 fetching corpus: 2300, signal 144314/178098 (executing program) 2022/09/30 13:10:08 fetching corpus: 2350, signal 145427/179523 (executing program) 2022/09/30 13:10:08 fetching corpus: 2400, signal 147351/181441 (executing program) 2022/09/30 13:10:08 fetching corpus: 2450, signal 149088/183346 (executing program) 2022/09/30 13:10:08 fetching corpus: 2500, signal 149814/184507 (executing program) 2022/09/30 13:10:09 fetching corpus: 2550, signal 150928/185813 (executing program) 2022/09/30 13:10:09 fetching corpus: 2600, signal 152162/187203 (executing program) 2022/09/30 13:10:09 fetching corpus: 2650, signal 153321/188517 (executing program) 2022/09/30 13:10:09 fetching corpus: 2700, signal 154194/189639 (executing program) 2022/09/30 13:10:09 fetching corpus: 2750, signal 155151/190801 (executing program) 2022/09/30 13:10:09 fetching corpus: 2800, signal 155963/191861 (executing program) 2022/09/30 13:10:09 fetching corpus: 2850, signal 157286/193164 (executing program) 2022/09/30 13:10:09 fetching corpus: 2900, signal 158343/194335 (executing program) 2022/09/30 13:10:10 fetching corpus: 2950, signal 159134/195334 (executing program) 2022/09/30 13:10:10 fetching corpus: 3000, signal 159797/196236 (executing program) 2022/09/30 13:10:10 fetching corpus: 3050, signal 160556/197200 (executing program) 2022/09/30 13:10:10 fetching corpus: 3100, signal 162069/198550 (executing program) 2022/09/30 13:10:10 fetching corpus: 3150, signal 163021/199796 (executing program) 2022/09/30 13:10:10 fetching corpus: 3200, signal 163709/200694 (executing program) 2022/09/30 13:10:10 fetching corpus: 3250, signal 166429/202548 (executing program) 2022/09/30 13:10:10 fetching corpus: 3300, signal 167990/203771 (executing program) 2022/09/30 13:10:10 fetching corpus: 3350, signal 168740/204654 (executing program) 2022/09/30 13:10:11 fetching corpus: 3400, signal 169879/205728 (executing program) 2022/09/30 13:10:11 fetching corpus: 3450, signal 170774/206612 (executing program) 2022/09/30 13:10:11 fetching corpus: 3500, signal 172134/207661 (executing program) 2022/09/30 13:10:11 fetching corpus: 3550, signal 172668/208412 (executing program) 2022/09/30 13:10:11 fetching corpus: 3600, signal 173896/209334 (executing program) 2022/09/30 13:10:11 fetching corpus: 3650, signal 174432/210021 (executing program) 2022/09/30 13:10:11 fetching corpus: 3700, signal 174912/210684 (executing program) 2022/09/30 13:10:11 fetching corpus: 3750, signal 175564/211399 (executing program) 2022/09/30 13:10:12 fetching corpus: 3800, signal 176191/212088 (executing program) 2022/09/30 13:10:12 fetching corpus: 3850, signal 176999/212813 (executing program) 2022/09/30 13:10:12 fetching corpus: 3900, signal 177817/213535 (executing program) 2022/09/30 13:10:12 fetching corpus: 3950, signal 178452/214206 (executing program) 2022/09/30 13:10:12 fetching corpus: 4000, signal 179316/214939 (executing program) 2022/09/30 13:10:12 fetching corpus: 4050, signal 179828/215561 (executing program) 2022/09/30 13:10:12 fetching corpus: 4100, signal 180745/216325 (executing program) 2022/09/30 13:10:12 fetching corpus: 4150, signal 181087/216839 (executing program) 2022/09/30 13:10:13 fetching corpus: 4200, signal 181906/217495 (executing program) 2022/09/30 13:10:13 fetching corpus: 4250, signal 182605/218123 (executing program) 2022/09/30 13:10:13 fetching corpus: 4300, signal 183427/218716 (executing program) 2022/09/30 13:10:13 fetching corpus: 4350, signal 184716/219402 (executing program) 2022/09/30 13:10:13 fetching corpus: 4400, signal 185198/219913 (executing program) 2022/09/30 13:10:13 fetching corpus: 4450, signal 185780/220389 (executing program) 2022/09/30 13:10:13 fetching corpus: 4500, signal 186828/221110 (executing program) 2022/09/30 13:10:13 fetching corpus: 4550, signal 187550/221624 (executing program) 2022/09/30 13:10:14 fetching corpus: 4600, signal 187975/222059 (executing program) 2022/09/30 13:10:14 fetching corpus: 4650, signal 188639/222577 (executing program) 2022/09/30 13:10:14 fetching corpus: 4700, signal 189153/223024 (executing program) 2022/09/30 13:10:14 fetching corpus: 4750, signal 189739/223457 (executing program) 2022/09/30 13:10:14 fetching corpus: 4800, signal 190083/223878 (executing program) 2022/09/30 13:10:14 fetching corpus: 4850, signal 190531/224309 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/224715 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/225021 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/225347 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/225699 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/226056 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/226370 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/226702 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/227073 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/227424 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/227785 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/228127 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/228491 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/228839 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/229173 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/229520 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/229874 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/229892 (executing program) 2022/09/30 13:10:14 fetching corpus: 4872, signal 190746/229892 (executing program) 2022/09/30 13:10:17 starting 8 fuzzer processes 13:10:17 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x9f3c, 0x101000) ioctl$EVIOCGID(r0, 0x80084502, &(0x7f0000000040)=""/42) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4020c0, 0x0) ioctl$EVIOCSMASK(r1, 0x40104593, &(0x7f00000001c0)={0x2, 0xe9, &(0x7f00000000c0)="cf0e848a748c7cd8f8f7e52551c00c94ca60947d05d60cc3be2864ff622937d2635561244ccc2c42691f291118bfca32f0b1ecc2833ed0f48734f658847afda285c69aad944bf36d4fdb0eb968d38514ac79940222109e86ffeb7c3da12be96d4a31651988d6c2315b97880a115cb1d7f19a88df957ffa0209f6dfb9c4c887ac681a6c7e8dccb931230c5c98721654c5785c9267ac53e7f530971d00a0285259ddd3b2a1d467b5cc3e02af6cfe67ff5d3a3e5261fc060175779b517fafe20d2391fc78e1d0bb88d548efde7d56136cd7b91bd4cb2c384bf0685417b583ea0a5511482a3e9fdf436bc3"}) ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0x1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1, {0x6b4}}, './file0\x00'}) ioctl$AUTOFS_IOC_FAIL(r2, 0x9361, 0x9f) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$FIONCLEX(r3, 0x5450) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000240)={{0x1, 0x1, 0x18, r2, {0x401, 0x7fffffff}}, './file0\x00'}) setsockopt$packet_int(r4, 0x107, 0xb, &(0x7f0000000280)=0x80000001, 0x4) ioctl$HIDIOCGREPORT(r2, 0x400c4807, &(0x7f00000002c0)={0x3, 0x3, 0x10000}) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/nf_conntrack_ftp', 0x42880, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), r5) ioctl$EVIOCSMASK(r2, 0x40104593, &(0x7f0000000480)={0x11, 0xe3, &(0x7f0000000380)="f3c56cec3f90872504b25cd4bbdc33cacb97b58a0c7b3c0e3668dbde41c37acd0c8ada188bf71e0a5ddb0334df06e1f26ba0658264d19a06066bd34b7ae1b25eaf8095b3bf5baa775c0d291c255dc0201e334833bea50a8dc06a33e3e678949bd877dfac104b2c6886a53874494c014d40f4438f43be2b4028727b7888341ec254afb8d104b2082c9e154dbc5e68abea9bc67afa9721e20d06c4bf1dae0d8851db4d443c3b4928c48b5ae72377ab46c8ff8faca34fd0ebeae77ff49d2f86992b0e490b2973bcd3268e3bca47148ece159afe2fd8f7203d84d2c614131d4a7b90937a3c"}) ioctl$SCSI_IOCTL_DOORUNLOCK(r4, 0x5381) ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r3, {0x7, 0x20}}, './file0\x00'}) ioctl$EVIOCGLED(r6, 0x80404519, &(0x7f0000000500)=""/4096) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000001500)={{0x1, 0x1, 0x18, r1, {0x1000}}, './file0\x00'}) ioctl$INCFS_IOC_FILL_BLOCKS(r7, 0x80106720, &(0x7f0000001640)={0x1, &(0x7f0000001600)=[{0x6, 0xae, &(0x7f0000001540)="f70badb6c385d6288423e5b1c5663b9e69fd7cfc1659566c22e69bebce4e84d7911773491c5f287517f6ead9e34e48691db9904a9cf836029cf46dbd1ad81710b29c79a03105ee1fdf095b0ded41884fb1b93e5c42ed7efd7ea125797cee00d070410391c5f496af810d6fd1d691a6588a68f2d9e7d2503cb6d832fd0b0e16619f065e374e914c9252032b392a8f3a32e213388694f05d1ce6449544ff1b8b8b1e5a08367ee2d539f977321fd468", 0x1, 0x1}]}) 13:10:17 executing program 1: ioctl$sock_SIOCGSKNS(0xffffffffffffffff, 0x894c, &(0x7f0000000000)=0x5) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000080)={0x1, 'ipvlan1\x00', {}, 0x3}) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wg1\x00'}) sendmsg$NL80211_CMD_STOP_NAN(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x0, 0x8, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xc16, 0x58}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0xc0}, 0x40810) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f0000000200)=@abs, 0x6e, &(0x7f0000000980)=[{&(0x7f0000000280)=""/234, 0xea}, {&(0x7f0000000380)=""/60, 0x3c}, {&(0x7f00000003c0)=""/255, 0xff}, {&(0x7f00000004c0)=""/120, 0x78}, {&(0x7f0000000540)=""/194, 0xc2}, {&(0x7f0000000640)=""/95, 0x5f}, {&(0x7f00000006c0)=""/20, 0x14}, {&(0x7f0000000700)=""/191, 0xbf}, {&(0x7f00000007c0)=""/205, 0xcd}, {&(0x7f00000008c0)=""/154, 0x9a}], 0xa, &(0x7f0000000a40)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}, 0x40012001) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000b00), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_SET(r1, &(0x7f0000000d40)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000d00)={&(0x7f0000000b40)={0x184, r4, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xdf14}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x20}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x80000001}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x100}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}]}, @TIPC_NLA_BEARER={0x124, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @local}}, {0x14, 0x2, @in={0x2, 0x4e24, @local}}}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x20000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0xb8cf, @dev={0xfe, 0x80, '\x00', 0xd}, 0xffffffff}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x6e}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010100}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x4, @private2, 0x20}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x401}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7ff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x184}, 0x1, 0x0, 0x0, 0x24040084}, 0x24000801) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r3, &(0x7f0000000ec0)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x98, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xffffffff, 0x2d}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x5b}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x65}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x7b}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x7d}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x46}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x4c}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x74}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1f}]}, 0x98}, 0x1, 0x0, 0x0, 0x881}, 0x4001) sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000001100)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000010c0)={&(0x7f0000000f40)={0x16c, 0x7, 0xa, 0x201, 0x0, 0x0, {0xc, 0x0, 0x5}, [@NFTA_RULE_USERDATA={0x6, 0x7, 0x1, 0x0, 'bt'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x2}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x2}, @NFTA_RULE_EXPRESSIONS={0x130, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@lookup={{0xb}, @void}, @fwd={{0x8}, @void}, @bitwise={{0xc}, @void}]}, {0xb8, 0x1, 0x0, 0x1, [@connlimit={{0xe}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_CONNLIMIT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xff}, @NFTA_CONNLIMIT_FLAGS={0x8}]}}, @quota={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x100000000000}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0xce8}, @NFTA_QUOTA_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}]}}, @ct={{0x7}, @void}, @dup_ipv6={{0x8}, @void}, @dup_ipv4={{0x8}, @void}, @objref={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz2\x00'}, @NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz2\x00'}]}}, @dup_ipv6={{0x8}, @void}]}, {0x18, 0x1, 0x0, 0x1, [@xfrm={{0x9}, @void}, @dup_ipv6={{0x8}, @void}]}, {0x38, 0x1, 0x0, 0x1, [@tproxy={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_TPROXY_FAMILY={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_TPROXY_FAMILY={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_TPROXY_REG_PORT={0x8, 0x3, 0x1, 0x0, 0xe}]}}, @exthdr={{0xb}, @void}]}]}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_POSITION_ID={0x8}]}, 0x16c}, 0x1, 0x0, 0x0, 0x44000}, 0x891) symlink(&(0x7f0000001140)='./file0\x00', &(0x7f0000001180)='./file0\x00') ioctl$sock_FIOGETOWN(r3, 0x8903, &(0x7f00000011c0)) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000001200)=0x0) kcmp(r5, r0, 0x2, r2, r2) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r6, 0xf507, 0x0) pipe(&(0x7f0000001240)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$NL80211_CMD_NEW_MPATH(r7, &(0x7f0000001340)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001300)={&(0x7f00000012c0)={0x2c, 0x0, 0x400, 0x70bd28, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x4000010) r8 = accept4$bt_l2cap(r3, &(0x7f0000001380)={0x1f, 0x0, @none}, &(0x7f00000013c0)=0xe, 0x80000) setsockopt$SO_BINDTODEVICE_wg(r8, 0x1, 0x19, &(0x7f0000001400)='wg0\x00', 0x4) 13:10:17 executing program 2: ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000a40)={0x10, 0x6, {0x4, @struct={0xfffffffc, 0x2}, 0x0, 0x80000000, 0x1000, 0x1, 0x5e, 0x4, 0x440, @usage=0x7f, 0x3, 0x200, [0x101, 0xf8, 0xb823, 0x0, 0x2]}, {0x1, @usage=0x5, 0x0, 0x6, 0x80, 0x0, 0xffff, 0x7fff, 0x20, @usage=0x9, 0xffffffe0, 0x2, [0x577f, 0x8283, 0x401, 0x1, 0xd7, 0x4]}, {0x7a45, @struct={0x1, 0x10000}, 0x0, 0x1, 0xffff, 0x3, 0x10000, 0x0, 0x10, @usage=0x82, 0x3, 0xea5, [0x80000001, 0x1, 0x4, 0x1, 0x9, 0xfff]}, {0x46c4, 0x1f, 0xfff}}) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000000e40)={r0, "e3cb306a1e29998b3a7d0734cd4b3a1d"}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0xfffffffffffff131) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000001e40)=0x4, 0x7) pipe2(&(0x7f0000001e80)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84800) ioctl$HIDIOCGRAWINFO(r2, 0x80084803, &(0x7f0000001ec0)=""/244) r3 = syz_open_dev$hidraw(&(0x7f0000001fc0), 0x1, 0x361101) r4 = signalfd4(r3, &(0x7f0000002000)={[0x8]}, 0x8, 0x80000) r5 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000002040), 0x4800, 0x0) fcntl$setpipe(r5, 0x407, 0x0) ioctl$FS_IOC_GETVERSION(r4, 0x80087601, &(0x7f0000002080)) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f00000020c0)=0x3) r6 = accept(r2, &(0x7f0000002100)=@ethernet={0x0, @remote}, &(0x7f0000002180)=0x80) sendmsg$NL80211_CMD_SET_PMKSA(r6, &(0x7f00000022c0)={&(0x7f00000021c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002280)={&(0x7f0000002200)={0x58, 0x0, 0x800, 0x70bd27, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0xcb7}, @NL80211_ATTR_PMKID={0x14, 0x55, "15f4e27d9fd95d3d2e6212b23811ce54"}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x41}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_PMKID={0x14, 0x55, "c418a87d52f32939b16e9f7b3f059dce"}]}, 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x20000040) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r4, 0x4008941a, &(0x7f0000002300)) ioctl$FS_IOC_MEASURE_VERITY(r1, 0xc0046686, &(0x7f0000002340)={0x0, 0xbd, "35f7f6eaa6a3891049e5e15780719bacc6fb45cbcd9b2052b83632530abbfdb2a3964dcfa254a41bde8958b89040a349325cca0150b71245eca806d0949654a69067b3686dfe0f28e054eea3fe71446a671740b60308cb7b5919cd4286a7f70477cf02b3e97b7ff9c5cd173686c7b424183ab8098a273c51aec6b6bc3c83f13abfa115a5c6dd32fa0e71dd684a88eed7068f80ce606e37f8bebe56cfcd30afd3f797b47954e6252a37fbcc88a9d33fedef22b0d9a93ff1edca1e9b9eb5"}) r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000002440), 0x408000, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000002480)={{0x1, 0x1, 0x18, r7}, './file0\x00'}) r9 = ioctl$TIOCGPTPEER(r8, 0x5441, 0x10001) fcntl$setown(r9, 0x8, 0x0) [ 70.443382] audit: type=1400 audit(1664543417.358:6): avc: denied { execmem } for pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 13:10:17 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x402081, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000040)={0x0, 0x0, r0, 0xac, 0x80000}) setsockopt$inet_tcp_buf(r0, 0x6, 0x6639b1743818f543, &(0x7f0000000080)="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", 0xfc) preadv2(r0, &(0x7f0000000740)=[{&(0x7f0000000180)=""/127, 0x7f}, {&(0x7f0000000200)=""/240, 0xf0}, {&(0x7f0000000300)=""/212, 0xd4}, {&(0x7f0000000400)}, {&(0x7f0000000440)=""/121, 0x79}, {&(0x7f00000004c0)=""/70, 0x46}, {&(0x7f0000000540)=""/91, 0x5b}, {&(0x7f00000005c0)=""/84, 0x54}, {&(0x7f0000000640)=""/209, 0xd1}], 0x9, 0x4, 0xffff8001, 0x8) ioctl$SG_EMULATED_HOST(0xffffffffffffffff, 0x2203, &(0x7f0000000800)) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000840)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) pwritev(r1, &(0x7f0000001b80)=[{&(0x7f0000000880)="8efa9ae221e377cb04989e1c242fcf26f66b29a0a33fb80835d736f121bc9ebd1e9d9bf9aa79a92c66e29e275fb63d06baae580d9db87fbc4337cbd54d32cee8c5234800d5cc33c42f5e9ce15cb52e8e8d2a3940491c58d08452e74a8c08dc8477545657cae07db9ceadff46f8df8ce5aebf5aec958e0dac870cbf8f6bb5c1212b92bcb607aa307e70afb29372a628af822e007ecb273c83832639ca3773acc616b3b7d02ea9116787cf798516882248401b1fc0dd1f6bc0", 0xb8}, {&(0x7f0000000940)="f325c342cb713e9188610b5b73d5fcd6fccbd046ef3585d238e2e24181381ab41efabd435f3e0e6a625acce0b8ef04f1a7ff2dd2167d927b60d4c555f24ce0b85f", 0x41}, {&(0x7f00000009c0)="5fe009bb68c3bf67f380b8ea2b3d0070247bf87eba73ce9c127d4ac4698b1ba8885338b55899b87d6c99160c471983f3d7e3ab09a4eaaf9c6b5cb6fda936f2d8b458458367ced4197f4b6808a02a074490d11aaf58d1e59b2905c007ee783b354f1b318c6e25a336757a7cd22fb4cb4e54887f674a33d56be3936c36aa463cae27ca0afd05c25380", 0x88}, {&(0x7f0000000a80)="051bdb82386df280d62f577fad9037eb0b425e8498195724f4e1f4ae51c8ced310e42b5d288a30950c84730a3c6dee8ef85b6ceb8e963becf4f3e7e069604c8e2279d47056c4f9ff64f883f22627807d67c4cddfe571d669a72fb4971b3be9a7c6fe65681646111b28121b06c01f406cf2e79bb4903a83fceac550d8932aa7a3886b79279acfa6", 0x87}, {&(0x7f0000000b40)="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", 0x1000}, {&(0x7f0000001b40)="da36b9daa74cb756669e36c2950128fed62a1385dfd8a3", 0x17}], 0x6, 0x40, 0x9) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r1) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000001c00)) accept4(r1, 0x0, &(0x7f0000001c40), 0x80800) write$binfmt_script(r1, &(0x7f0000001c80)={'#! ', './file0', [{0x20, '['}, {0x20, '/dev/full\x00'}], 0xa, "9f696fb757b9e3c6fa916157dac587a2be98ef6631186a6fd8e3abf8c00fe6bb33f905819917d8af1d30afc9a4a1f94ba6fa02cf6085852958b0565c43be7252b95c863d2479e4afa04eef6be59edbdcab0ba6748a25b05d5c42fe784f89da8c338120cfadc0bf9cc408b055bbbfce2edd21ad51e588cdce9eadcf8f2ada2b8f2e1fa94ef84c361d4f8635ec235edee2b82edd7cc8dfa558b3ea46"}, 0xb3) write(0xffffffffffffffff, &(0x7f0000001d40)="85dc681a935ddd8b95d35aeff671b8dbc649caa3469dc41f817101c8960a5d1481dfd99c51f37bf20151945380526f28e0eeb279ca8906c0df993a188676bee64498f21db4697f10e613c2fd800877713f9ba735792d9bc1113a326fdf6760330aad313dc937862c78888b636b0549356fd3d4cd1c0ca56620b444ed234a2006b4d41910f7f4a1bb572b4f6e08bc88b2395bf16af096696c6cbf4d535ffb67a80e421288e35e801fb2e29d40f8c4e5d1744d6af286455f03b4e4b712dd11c919ced6625f304e991b609aff671894255029ba8d9f9fa40baef39856a9980f0d92bc884bdc1be177f24d7ba973f115d3b03fae678d90855342", 0xf8) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f0000001e40)) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000001ec0), 0x10000, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000001f00)=0x8d2541b767894d00, 0x4) openat(r1, &(0x7f0000001f40)='./file0\x00', 0x4000, 0x36) ioctl$AUTOFS_DEV_IOCTL_VERSION(r2, 0xc0189371, &(0x7f0000001fc0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) renameat2(0xffffffffffffff9c, &(0x7f0000001f80)='./file0\x00', r3, &(0x7f0000002000)='./file0\x00', 0x0) utimensat(r2, &(0x7f0000002040)='./file0\x00', &(0x7f0000002080)={{0x77359400}, {0x77359400}}, 0x0) lsetxattr$trusted_overlay_origin(&(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), &(0x7f0000002140), 0x2, 0x0) 13:10:17 executing program 4: pipe2(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) sendmsg$NFNL_MSG_ACCT_DEL(r1, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x4c, 0x3, 0x7, 0x101, 0x0, 0x0, {0x5}, [@NFACCT_FILTER={0x14, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x7fff}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xfffffffd}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x9}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8010}, 0xc884) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r1, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000500)={&(0x7f0000000440)={0xb8, 0x0, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x8005}, 0x40000) ppoll(&(0x7f0000000580), 0x0, &(0x7f00000005c0)={0x77359400}, &(0x7f0000000600)={[0x600]}, 0x8) recvmsg$unix(r0, &(0x7f0000000880)={&(0x7f0000000640)=@abs, 0x6e, &(0x7f00000007c0)=[{&(0x7f00000006c0)=""/203, 0xcb}], 0x1, &(0x7f0000000800)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}, 0x40) sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x1c, 0x1, 0x1, 0x201, 0x0, 0x0, {0x0, 0x0, 0x1}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000) sendmsg$NFQNL_MSG_VERDICT(r3, &(0x7f0000000a80)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x20, 0x1, 0x3, 0x5, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x557c}}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x88000) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000ac0)) r5 = signalfd(r1, &(0x7f0000000b00)={[0x21f]}, 0x8) setsockopt$inet6_udp_int(r1, 0x11, 0xb, &(0x7f0000000b40)=0x6, 0x4) sendmsg$NL80211_CMD_GET_REG(r4, &(0x7f0000000d80)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000bc0)={0x17c, 0x0, 0x300, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_REG_RULES={0x150, 0x22, 0x0, 0x1, [{0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x2}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xe5dc0000}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x3}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x9}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x9}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x2}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xba}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x4}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}, @NL80211_ATTR_FREQ_RANGE_END={0x8}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x9}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x7fff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x2}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xb7a}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x200}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xfffffeff}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x100}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7fffffff}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x80000001}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x2}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xb0b}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x2}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x7}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x5}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x9}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x17c}, 0x1, 0x0, 0x0, 0x8090}, 0x60040001) r6 = syz_open_dev$vcsa(&(0x7f0000000dc0), 0x10001, 0x109200) sendmsg$NL80211_CMD_VENDOR(r6, &(0x7f0000000f40)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000f00)={&(0x7f0000000e40)={0xa4, 0x0, 0x1, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0xffff327c}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x4}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x1}, @NL80211_ATTR_VENDOR_DATA={0x67, 0xc5, "f7832d57570fb7f02451fec5c533e4cea4e9019cba0a331a941df7dad7725f5850dc5c25e148098a7846a240c565a70194a15e73eaf88586f978472b873a1a787369c8f397107b7af1c6c9bddcbe9d9c4d0e5adf11ec2d414d5194891e5bc28dc3b0b0"}, @NL80211_ATTR_VENDOR_ID={0x8}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4000}, 0x0) r7 = openat(r2, &(0x7f0000000f80)='./file0\x00', 0x800, 0x108) r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001000), r4) sendmsg$ETHTOOL_MSG_WOL_SET(r7, &(0x7f0000001440)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x1369dcae9156a294}, 0xc, &(0x7f0000001400)={&(0x7f0000001040)={0x3c0, r8, 0x21, 0x70bd2b, 0x25dfdbfb, {}, [@ETHTOOL_A_WOL_SOPASS={0x6a, 0x3, "2b4bbd68c01ddabc5d96bfc72a1180719f792996c26d417edcee30676615ec35127d53c765a2223acd782eaa4f77dab642595bbd9aca5e44db94445377430068bdc69cfb7f0f0ea74052ca1ba94310a9adfb8330eee37e97c1e4cd46ca7ca40fb9aa9f96d7e7"}, @ETHTOOL_A_WOL_SOPASS={0x86, 0x3, "cf4eaf0e2db24cdb3ec8d77a71372a06cd575eef0a17923a670556b747ac5067e37f44f4189b3c12ca07f6a8b9a5837b13c970193db67a45284422e4c306794ced490a467e1034462725fe1c4fe397654b71253d4f1fb3880f4a3241dbca596efb990de6f4e862f781ae394bc3b08943b4afbc4631b7a760c1c804c9003d5448074b"}, @ETHTOOL_A_WOL_SOPASS={0x9b, 0x3, "05f61fa013bec1f68479cd5a9e7eb4f05e9d703b455643a509fdb0e181eb90ef05228f6d731a4a77708473658d0b87e52c59d519a4111feadcca8a52edc72cdd2c69fe71f793860d3f935363be61b5f2f89613450b84bb2d6dd60657738eac6223e35f607a26f89dcf9ebbb99e225c1c24d5dc9ad380446ad4c4c6d488687daf63d43d5f57203800bb5fb945cf1551b41ed663571fa3f7"}, @ETHTOOL_A_WOL_MODES={0x1dc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x124, 0x3, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3f}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '&I}M!{*%}\x00'}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x13, 0x2, 'batadv_slave_1\x00'}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/vcsa#\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1b5}, @ETHTOOL_A_BITSET_BIT_NAME={0x13, 0x2, 'batadv_slave_1\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '@\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '^\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1000}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'syz1\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'sit0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'syz1\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '+\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'syz1\x00'}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ':\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_VALUE={0xac, 0x4, "31ce37392982c64d17a5e5844e2f39ae718f278e0e5acf14e821be3d25ecef2280a30609d7459e26a4592057049be4c743bfe25d9bee57459022ae66345510803026f11919adba22427be248ba9e82a430b7e7449d6cdb11610eadff5feeb82d3d172eab6605daee4e031f2957fa83700512da0fdd307f3ff3954ca093ddafd7632baeb762b7e96f1456e95007f5a9b39c95f05de93277ea2e2b168a1a297281fe4e3bbff40cb4f6"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x98000000}]}, @ETHTOOL_A_WOL_SOPASS={0x4}, @ETHTOOL_A_WOL_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}, @ETHTOOL_A_WOL_SOPASS={0x24, 0x3, "fc8f0f6b13d841b15da723b49e66baade4785f7ff7c9a8edc4760b13e7a07eb9"}]}, 0x3c0}, 0x1, 0x0, 0x0, 0x840}, 0xc001) r9 = openat$cgroup_freezer_state(r6, &(0x7f0000001480), 0x2, 0x0) pread64(r9, &(0x7f00000014c0)=""/235, 0xeb, 0x5) r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001600), r5) sendmsg$NL80211_CMD_SET_QOS_MAP(r2, &(0x7f0000001700)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000016c0)={&(0x7f0000001640)={0x64, r10, 0x400, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_QOS_MAP={0xe, 0xc7, {[{0x4, 0x2}], "89fa57aa86f5305a"}}, @NL80211_ATTR_QOS_MAP={0x1a, 0xc7, {[{0x3, 0x7}, {0x5, 0x2}, {0x40}, {0x20, 0x5}, {0x20, 0x7}, {0x81, 0x4}, {0x9}], "30e9723e2fbce983"}}, @NL80211_ATTR_QOS_MAP={0x24, 0xc7, {[{0x8, 0x4}, {0x7, 0x1}, {0x9, 0x4}, {0xfd, 0x1}, {0x5, 0x2}, {0x5, 0x3}, {0x87, 0x7}, {0x9, 0x5}, {0x1, 0x2}, {0x3, 0x5}, {0x3, 0x6}, {0x8, 0x7}], "1dbe8a299d245c8c"}}]}, 0x64}, 0x1, 0x0, 0x0, 0x800}, 0x40008040) 13:10:17 executing program 6: ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000000)={"9ed0acca0462eb010329409528a754c5", 0x0, 0x0, {0x0, 0x8}, {0x9b, 0x9}, 0x2, [0xd63, 0x401, 0x5, 0x5, 0x32c, 0x5, 0x700, 0x7, 0x3f, 0xfa7f, 0x401, 0x4, 0x1f, 0x100000000, 0x7fff, 0xffff]}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000180)={{}, r0, 0x0, @inherit={0x70, &(0x7f0000000100)={0x0, 0x5, 0x3f, 0xfff, {0x1, 0x7, 0xffff, 0x9, 0x80}, [0xf4, 0x600000000, 0x7, 0x4, 0x4]}}, @subvolid=0x2}) fcntl$setflags(0xffffffffffffffff, 0x2, 0x1) ioctl$TIOCEXCL(0xffffffffffffffff, 0x540c) r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000001180)='/proc/self/attr/fscreate\x00', 0x2, 0x0) fchmod(r1, 0x32) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000011c0), 0x88080, 0x0) r3 = syz_genetlink_get_family_id$smc(&(0x7f0000001240), r2) sendmsg$SMC_PNETID_FLUSH(r2, &(0x7f0000001340)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001300)={&(0x7f0000001280)={0x64, r3, 0x200, 0x70bd25, 0x25dfdbff, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'ip6gre0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x64}, 0x1, 0x0, 0x0, 0x84}, 0x20004805) write$selinux_attr(r1, &(0x7f0000001380)='system_u:object_r:logrotate_var_lib_t:s0\x00', 0x29) write$selinux_attr(r1, &(0x7f00000013c0)='system_u:object_r:sshd_key_t:s0\x00', 0x20) sendmsg$SEG6_CMD_DUMPHMAC(r2, &(0x7f0000001500)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x4004000}, 0xc, &(0x7f00000014c0)={&(0x7f0000001440)={0x68, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}, @SEG6_ATTR_SECRET={0x14, 0x4, [0x19, 0x800, 0x8, 0x9]}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x9}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x101}, @SEG6_ATTR_SECRET={0xc, 0x4, [0x0, 0xffff]}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x2}, @SEG6_ATTR_DST={0x14, 0x1, @private0}]}, 0x68}, 0x1, 0x0, 0x0, 0x4001}, 0x11) ioctl$RTC_RD_TIME(r2, 0x80247009, &(0x7f0000001540)) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000001580)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x5f}}, './file0\x00'}) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f00000015c0)=0x880, 0x4) write$selinux_attr(0xffffffffffffffff, &(0x7f0000001600)='system_u:object_r:setrans_initrc_exec_t:s0\x00', 0x2b) pipe2(&(0x7f0000001640)={0xffffffffffffffff}, 0x4000) sendfile(r5, r2, &(0x7f0000001680)=0x80000000, 0x2) r6 = signalfd(r4, &(0x7f00000016c0)={[0x401]}, 0x8) write$binfmt_elf64(r6, &(0x7f0000001700)={{0x7f, 0x45, 0x4c, 0x46, 0xff, 0x6, 0x3, 0x0, 0x1, 0x2, 0x5, 0x0, 0x161, 0x40, 0x1cc, 0x7, 0x9, 0x38, 0x1, 0x7f, 0x1, 0x4}, [{0x474e553, 0x4, 0x100, 0x40, 0x9, 0x3, 0x9, 0x40}], "c5e500d733e023cdad4dbfe3cb6007929b1675882451041cad35", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xa92) 13:10:17 executing program 5: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x10800, 0x0) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0xb0, 0x0, 0x800, 0x70bd27, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x8}, @MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x41}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}, @MPTCP_PM_ATTR_ADDR={0x48, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x9}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}]}, 0xb0}, 0x1, 0x0, 0x0, 0x1}, 0x20048800) pipe2(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) sendmsg$NL80211_CMD_ASSOCIATE(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x4c, 0x0, 0x8, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0x29, 0x2a, [@cf={0x4, 0x6, {0x6, 0x9, 0xffff, 0xd1}}, @ibss={0x6, 0x2, 0xe7a}, @ssid={0x0, 0x17, @random="c3568bc429ca99832bcc0b25060d22d79ea1274248d4d3"}]}, @NL80211_ATTR_DISABLE_HT={0x4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) ioctl$EVIOCSKEYCODE_V2(r2, 0x40284504, &(0x7f0000000340)={0x40, 0x6, 0xf54f, 0x1, "78771c43f9ffca2898d2bd378f7f2bc4823eb8ed6e429b4266f00051c180ce8e"}) r3 = open_tree(r2, &(0x7f0000000380)='./file0\x00', 0x800) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r3, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x3, 0x2, 0x201, 0x0, 0x0, {0x7, 0x0, 0x7}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x10) ioctl$FIGETBSZ(r3, 0x2, &(0x7f00000004c0)) pipe(&(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = socket$netlink(0x10, 0x3, 0x8) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r5, 0xc0189375, &(0x7f0000000540)={{0x1, 0x1, 0x18, r6}, './file0\x00'}) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) dup(r7) ioctl$TCSETA(r5, 0x5406, &(0x7f0000000580)={0x8, 0x5, 0x6, 0x7, 0x2, "8d0e6fe4d9cc55a0"}) r8 = accept4$inet(r0, &(0x7f0000008a00)={0x2, 0x0, @loopback}, &(0x7f0000008a40)=0x10, 0x800) fcntl$getown(r8, 0x9) ioctl$EVIOCGVERSION(0xffffffffffffffff, 0x80044501, &(0x7f0000008a80)=""/210) ioctl$FS_IOC_GETVERSION(r4, 0x80087601, &(0x7f0000008b80)) fgetxattr(r1, &(0x7f0000008bc0)=@known='trusted.syz\x00', &(0x7f0000008c00)=""/62, 0x3e) sendmsg$NL80211_CMD_SET_STATION(r8, &(0x7f0000008cc0)={&(0x7f0000008c40)={0x10, 0x0, 0x0, 0x10000080}, 0xc, &(0x7f0000008c80)={0x0}, 0x1, 0x0, 0x0, 0x4008080}, 0x4000) 13:10:17 executing program 7: pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() pause() [ 71.672257] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 71.675143] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 71.676907] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 71.680571] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 71.683233] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 71.684848] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 71.692820] Bluetooth: hci0: HCI_REQ-0x0c1a [ 71.719934] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 71.721548] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 71.726292] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 71.730565] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 71.739664] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 71.741726] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 71.748917] Bluetooth: hci1: HCI_REQ-0x0c1a [ 71.805419] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 71.807528] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 71.809229] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 71.811376] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 71.812829] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 71.814549] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 71.815731] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 71.816823] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 71.817861] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 71.818889] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 71.821663] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 71.822855] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 71.823902] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 71.823940] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 71.824921] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 71.839613] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 71.842795] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 71.843604] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 71.845851] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 71.846396] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 71.847336] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 71.849436] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 71.850864] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 71.854534] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 71.856153] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 71.858018] Bluetooth: hci7: HCI_REQ-0x0c1a [ 71.863541] Bluetooth: hci5: HCI_REQ-0x0c1a [ 71.868250] Bluetooth: hci6: HCI_REQ-0x0c1a [ 71.884433] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 71.907000] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 71.912967] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 71.933183] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 71.933821] Bluetooth: hci3: HCI_REQ-0x0c1a [ 71.939078] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 71.961624] Bluetooth: hci4: HCI_REQ-0x0c1a [ 73.750183] Bluetooth: hci0: command 0x0409 tx timeout [ 73.814807] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 73.814902] Bluetooth: hci1: command 0x0409 tx timeout [ 73.877779] Bluetooth: hci5: command 0x0409 tx timeout [ 73.877812] Bluetooth: hci6: command 0x0409 tx timeout [ 73.941765] Bluetooth: hci7: command 0x0409 tx timeout [ 74.005828] Bluetooth: hci3: command 0x0409 tx timeout [ 74.006409] Bluetooth: hci4: command 0x0409 tx timeout [ 75.797751] Bluetooth: hci0: command 0x041b tx timeout [ 75.861810] Bluetooth: hci1: command 0x041b tx timeout [ 75.925737] Bluetooth: hci6: command 0x041b tx timeout [ 75.926157] Bluetooth: hci5: command 0x041b tx timeout [ 75.990743] Bluetooth: hci7: command 0x041b tx timeout [ 76.053745] Bluetooth: hci4: command 0x041b tx timeout [ 76.054151] Bluetooth: hci3: command 0x041b tx timeout [ 77.845756] Bluetooth: hci0: command 0x040f tx timeout [ 77.909875] Bluetooth: hci1: command 0x040f tx timeout [ 77.973793] Bluetooth: hci5: command 0x040f tx timeout [ 77.973811] Bluetooth: hci6: command 0x040f tx timeout [ 78.037767] Bluetooth: hci7: command 0x040f tx timeout [ 78.101776] Bluetooth: hci3: command 0x040f tx timeout [ 78.101796] Bluetooth: hci4: command 0x040f tx timeout [ 78.741845] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 79.893786] Bluetooth: hci0: command 0x0419 tx timeout [ 79.958668] Bluetooth: hci1: command 0x0419 tx timeout [ 80.021854] Bluetooth: hci6: command 0x0419 tx timeout [ 80.022590] Bluetooth: hci5: command 0x0419 tx timeout [ 80.085839] Bluetooth: hci7: command 0x0419 tx timeout [ 80.149796] Bluetooth: hci3: command 0x0419 tx timeout [ 80.150676] Bluetooth: hci4: command 0x0419 tx timeout [ 83.541743] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 86.108201] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.109618] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.111372] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.113165] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.114306] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 86.115053] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 86.121740] Bluetooth: hci2: HCI_REQ-0x0c1a [ 88.149822] Bluetooth: hci2: command 0x0409 tx timeout [ 90.197780] Bluetooth: hci2: command 0x041b tx timeout [ 92.246795] Bluetooth: hci2: command 0x040f tx timeout [ 94.293854] Bluetooth: hci2: command 0x0419 tx timeout 13:11:08 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0) pwritev(r0, &(0x7f0000000380)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1, 0x7fffff8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_int(r1, 0x1, 0x2c, &(0x7f0000000b80), &(0x7f0000000bc0)=0x4) write$binfmt_aout(r1, &(0x7f00000003c0)={{0x108, 0x1, 0x7, 0x366, 0x200, 0x3, 0x3b8, 0x33f4}, "9d034201d058966adabd6fd908dd7bbaa48a1f594c41fb0c06006d878f4632e35b2efe6e43866f147b8919926cf1bb31b92373f90ad408b188cd9d0bcb50e1fd0795c0906c34cef82253424a92fe1f54e5240a1808711ddd", ['\x00', '\x00', '\x00']}, 0x378) dup(0xffffffffffffffff) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000240)='./file1\x00', 0x119) [ 121.990844] audit: type=1400 audit(1664543468.905:7): avc: denied { open } for pid=3709 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.992515] audit: type=1400 audit(1664543468.905:8): avc: denied { kernel } for pid=3709 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.012295] ------------[ cut here ]------------ [ 122.012318] [ 122.012321] ====================================================== [ 122.012325] WARNING: possible circular locking dependency detected [ 122.012329] 6.0.0-rc7-next-20220929 #1 Not tainted [ 122.012336] ------------------------------------------------------ [ 122.012339] syz-executor.7/3711 is trying to acquire lock: [ 122.012346] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 122.012392] [ 122.012392] but task is already holding lock: [ 122.012395] ffff888017588420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 122.012422] [ 122.012422] which lock already depends on the new lock. [ 122.012422] [ 122.012428] [ 122.012428] the existing dependency chain (in reverse order) is: [ 122.012432] [ 122.012432] -> #3 (&ctx->lock){....}-{2:2}: [ 122.012446] _raw_spin_lock+0x2a/0x40 [ 122.012457] __perf_event_task_sched_out+0x53b/0x18d0 [ 122.012468] __schedule+0xedd/0x2470 [ 122.012483] schedule+0xda/0x1b0 [ 122.012496] exit_to_user_mode_prepare+0x114/0x1a0 [ 122.012509] syscall_exit_to_user_mode+0x19/0x40 [ 122.012522] do_syscall_64+0x48/0x90 [ 122.012540] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.012553] [ 122.012553] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 122.012584] _raw_spin_lock_nested+0x30/0x40 [ 122.012595] raw_spin_rq_lock_nested+0x1e/0x30 [ 122.012608] task_fork_fair+0x63/0x4d0 [ 122.012625] sched_cgroup_fork+0x3d0/0x540 [ 122.012639] copy_process+0x4183/0x6e20 [ 122.012651] kernel_clone+0xe7/0x890 [ 122.012660] user_mode_thread+0xad/0xf0 [ 122.012670] rest_init+0x24/0x250 [ 122.012682] arch_call_rest_init+0xf/0x14 [ 122.012699] start_kernel+0x4c6/0x4eb [ 122.012713] secondary_startup_64_no_verify+0xe0/0xeb [ 122.012728] [ 122.012728] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 122.012742] _raw_spin_lock_irqsave+0x39/0x60 [ 122.012752] try_to_wake_up+0xab/0x1930 [ 122.012765] up+0x75/0xb0 [ 122.012779] __up_console_sem+0x6e/0x80 [ 122.012795] console_unlock+0x46a/0x590 [ 122.012811] vt_ioctl+0x2822/0x2ca0 [ 122.012824] tty_ioctl+0x785/0x16b0 [ 122.012835] __x64_sys_ioctl+0x19a/0x210 [ 122.012849] do_syscall_64+0x3b/0x90 [ 122.012866] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.012878] [ 122.012878] -> #0 ((console_sem).lock){....}-{2:2}: [ 122.012892] __lock_acquire+0x2a02/0x5e70 [ 122.012909] lock_acquire+0x1a2/0x530 [ 122.012925] _raw_spin_lock_irqsave+0x39/0x60 [ 122.012935] down_trylock+0xe/0x70 [ 122.012950] __down_trylock_console_sem+0x3b/0xd0 [ 122.012966] vprintk_emit+0x16b/0x560 [ 122.012982] vprintk+0x84/0xa0 [ 122.012998] _printk+0xba/0xf1 [ 122.013010] report_bug.cold+0x72/0xab [ 122.013026] handle_bug+0x3c/0x70 [ 122.013042] exc_invalid_op+0x14/0x50 [ 122.013059] asm_exc_invalid_op+0x16/0x20 [ 122.013071] group_sched_out.part.0+0x2c7/0x460 [ 122.013089] ctx_sched_out+0x8f1/0xc10 [ 122.013105] __perf_event_task_sched_out+0x6d0/0x18d0 [ 122.013116] __schedule+0xedd/0x2470 [ 122.013130] schedule+0xda/0x1b0 [ 122.013143] exit_to_user_mode_prepare+0x114/0x1a0 [ 122.013154] syscall_exit_to_user_mode+0x19/0x40 [ 122.013166] do_syscall_64+0x48/0x90 [ 122.013182] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.013195] [ 122.013195] other info that might help us debug this: [ 122.013195] [ 122.013198] Chain exists of: [ 122.013198] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 122.013198] [ 122.013213] Possible unsafe locking scenario: [ 122.013213] [ 122.013215] CPU0 CPU1 [ 122.013217] ---- ---- [ 122.013220] lock(&ctx->lock); [ 122.013226] lock(&rq->__lock); [ 122.013232] lock(&ctx->lock); [ 122.013239] lock((console_sem).lock); [ 122.013245] [ 122.013245] *** DEADLOCK *** [ 122.013245] [ 122.013247] 2 locks held by syz-executor.7/3711: [ 122.013254] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 122.013283] #1: ffff888017588420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 122.013309] [ 122.013309] stack backtrace: [ 122.013312] CPU: 1 PID: 3711 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220929 #1 [ 122.013325] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 122.013334] Call Trace: [ 122.013337] [ 122.013341] dump_stack_lvl+0x8b/0xb3 [ 122.013360] check_noncircular+0x263/0x2e0 [ 122.013377] ? format_decode+0x26c/0xb50 [ 122.013393] ? print_circular_bug+0x450/0x450 [ 122.013410] ? enable_ptr_key_workfn+0x20/0x20 [ 122.013427] ? format_decode+0x26c/0xb50 [ 122.013444] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 122.013462] __lock_acquire+0x2a02/0x5e70 [ 122.013483] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 122.013506] lock_acquire+0x1a2/0x530 [ 122.013522] ? down_trylock+0xe/0x70 [ 122.013539] ? lock_release+0x750/0x750 [ 122.013560] ? vprintk+0x84/0xa0 [ 122.013577] _raw_spin_lock_irqsave+0x39/0x60 [ 122.013588] ? down_trylock+0xe/0x70 [ 122.013604] down_trylock+0xe/0x70 [ 122.013620] ? vprintk+0x84/0xa0 [ 122.013637] __down_trylock_console_sem+0x3b/0xd0 [ 122.013654] vprintk_emit+0x16b/0x560 [ 122.013673] vprintk+0x84/0xa0 [ 122.013690] _printk+0xba/0xf1 [ 122.013701] ? record_print_text.cold+0x16/0x16 [ 122.013717] ? report_bug.cold+0x66/0xab [ 122.013735] ? group_sched_out.part.0+0x2c7/0x460 [ 122.013753] report_bug.cold+0x72/0xab [ 122.013772] handle_bug+0x3c/0x70 [ 122.013789] exc_invalid_op+0x14/0x50 [ 122.013807] asm_exc_invalid_op+0x16/0x20 [ 122.013820] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 122.013840] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 122.013851] RSP: 0018:ffff888030f37c48 EFLAGS: 00010006 [ 122.013861] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 122.013868] RDX: ffff88803f1c5040 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 122.013876] RBP: ffff88801ba40000 R08: 0000000000000005 R09: 0000000000000001 [ 122.013883] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff888017588400 [ 122.013891] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 122.013902] ? group_sched_out.part.0+0x2c7/0x460 [ 122.013922] ? group_sched_out.part.0+0x2c7/0x460 [ 122.013942] ctx_sched_out+0x8f1/0xc10 [ 122.013961] __perf_event_task_sched_out+0x6d0/0x18d0 [ 122.013976] ? lock_is_held_type+0xd7/0x130 [ 122.013989] ? __perf_cgroup_move+0x160/0x160 [ 122.014000] ? set_next_entity+0x304/0x550 [ 122.014018] ? update_curr+0x267/0x740 [ 122.014036] ? lock_is_held_type+0xd7/0x130 [ 122.014050] __schedule+0xedd/0x2470 [ 122.014067] ? io_schedule_timeout+0x150/0x150 [ 122.014083] ? rcu_read_lock_sched_held+0x3e/0x80 [ 122.014104] schedule+0xda/0x1b0 [ 122.014119] exit_to_user_mode_prepare+0x114/0x1a0 [ 122.014131] syscall_exit_to_user_mode+0x19/0x40 [ 122.014145] do_syscall_64+0x48/0x90 [ 122.014162] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.014175] RIP: 0033:0x7fab5cb06b19 [ 122.014184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.014194] RSP: 002b:00007fab5a07c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.014205] RAX: 0000000000000001 RBX: 00007fab5cc19f68 RCX: 00007fab5cb06b19 [ 122.014213] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fab5cc19f6c [ 122.014220] RBP: 00007fab5cc19f60 R08: 000000000000000e R09: 0000000000000000 [ 122.014227] R10: 0000000000000006 R11: 0000000000000246 R12: 00007fab5cc19f6c [ 122.014234] R13: 00007fffd7a2a96f R14: 00007fab5a07c300 R15: 0000000000022000 [ 122.014247] [ 122.069579] WARNING: CPU: 1 PID: 3711 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 122.070298] Modules linked in: [ 122.070557] CPU: 1 PID: 3711 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220929 #1 [ 122.071185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 122.072026] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 122.072452] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 122.073837] RSP: 0018:ffff888030f37c48 EFLAGS: 00010006 [ 122.074240] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 122.074788] RDX: ffff88803f1c5040 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 122.075340] RBP: ffff88801ba40000 R08: 0000000000000005 R09: 0000000000000001 [ 122.075882] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff888017588400 [ 122.076431] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 122.076986] FS: 00007fab5a07c700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 122.077600] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.078037] CR2: 00007f3fddca2b90 CR3: 000000001f6d6000 CR4: 0000000000350ee0 [ 122.078574] Call Trace: [ 122.078778] [ 122.078958] ctx_sched_out+0x8f1/0xc10 [ 122.079275] __perf_event_task_sched_out+0x6d0/0x18d0 [ 122.079674] ? lock_is_held_type+0xd7/0x130 [ 122.080018] ? __perf_cgroup_move+0x160/0x160 [ 122.080375] ? set_next_entity+0x304/0x550 [ 122.080731] ? update_curr+0x267/0x740 [ 122.081045] ? lock_is_held_type+0xd7/0x130 [ 122.081375] __schedule+0xedd/0x2470 [ 122.081674] ? io_schedule_timeout+0x150/0x150 [ 122.082038] ? rcu_read_lock_sched_held+0x3e/0x80 [ 122.082426] schedule+0xda/0x1b0 [ 122.082701] exit_to_user_mode_prepare+0x114/0x1a0 [ 122.083099] syscall_exit_to_user_mode+0x19/0x40 [ 122.083469] do_syscall_64+0x48/0x90 [ 122.083763] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.084161] RIP: 0033:0x7fab5cb06b19 [ 122.084454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.085839] RSP: 002b:00007fab5a07c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.086427] RAX: 0000000000000001 RBX: 00007fab5cc19f68 RCX: 00007fab5cb06b19 [ 122.086980] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fab5cc19f6c [ 122.087523] RBP: 00007fab5cc19f60 R08: 000000000000000e R09: 0000000000000000 [ 122.088059] R10: 0000000000000006 R11: 0000000000000246 R12: 00007fab5cc19f6c [ 122.088621] R13: 00007fffd7a2a96f R14: 00007fab5a07c300 R15: 0000000000022000 [ 122.089174] [ 122.089360] irq event stamp: 2108 [ 122.089627] hardirqs last enabled at (2107): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 122.090344] hardirqs last disabled at (2108): [] __schedule+0x1225/0x2470 [ 122.090987] softirqs last enabled at (1926): [] __irq_exit_rcu+0x11b/0x180 [ 122.091642] softirqs last disabled at (1917): [] __irq_exit_rcu+0x11b/0x180 [ 122.092293] ---[ end trace 0000000000000000 ]--- 13:11:09 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0) pwritev(r0, &(0x7f0000000380)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1, 0x7fffff8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_int(r1, 0x1, 0x2c, &(0x7f0000000b80), &(0x7f0000000bc0)=0x4) write$binfmt_aout(r1, &(0x7f00000003c0)={{0x108, 0x1, 0x7, 0x366, 0x200, 0x3, 0x3b8, 0x33f4}, "9d034201d058966adabd6fd908dd7bbaa48a1f594c41fb0c06006d878f4632e35b2efe6e43866f147b8919926cf1bb31b92373f90ad408b188cd9d0bcb50e1fd0795c0906c34cef82253424a92fe1f54e5240a1808711ddd", ['\x00', '\x00', '\x00']}, 0x378) dup(0xffffffffffffffff) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000240)='./file1\x00', 0x119) 13:11:09 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0) pwritev(r0, &(0x7f0000000380)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1, 0x7fffff8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_int(r1, 0x1, 0x2c, &(0x7f0000000b80), &(0x7f0000000bc0)=0x4) write$binfmt_aout(r1, &(0x7f00000003c0)={{0x108, 0x1, 0x7, 0x366, 0x200, 0x3, 0x3b8, 0x33f4}, "9d034201d058966adabd6fd908dd7bbaa48a1f594c41fb0c06006d878f4632e35b2efe6e43866f147b8919926cf1bb31b92373f90ad408b188cd9d0bcb50e1fd0795c0906c34cef82253424a92fe1f54e5240a1808711ddd", ['\x00', '\x00', '\x00']}, 0x378) dup(0xffffffffffffffff) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000240)='./file1\x00', 0x119) 13:11:09 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0) pwritev(r0, &(0x7f0000000380)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1, 0x7fffff8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_int(r1, 0x1, 0x2c, &(0x7f0000000b80), &(0x7f0000000bc0)=0x4) write$binfmt_aout(r1, &(0x7f00000003c0)={{0x108, 0x1, 0x7, 0x366, 0x200, 0x3, 0x3b8, 0x33f4}, "9d034201d058966adabd6fd908dd7bbaa48a1f594c41fb0c06006d878f4632e35b2efe6e43866f147b8919926cf1bb31b92373f90ad408b188cd9d0bcb50e1fd0795c0906c34cef82253424a92fe1f54e5240a1808711ddd", ['\x00', '\x00', '\x00']}, 0x378) dup(0xffffffffffffffff) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000240)='./file1\x00', 0x119) 13:11:09 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0) pwritev(r0, &(0x7f0000000380)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1, 0x7fffff8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_int(r1, 0x1, 0x2c, &(0x7f0000000b80), &(0x7f0000000bc0)=0x4) write$binfmt_aout(r1, &(0x7f00000003c0)={{0x108, 0x1, 0x7, 0x366, 0x200, 0x3, 0x3b8, 0x33f4}, "9d034201d058966adabd6fd908dd7bbaa48a1f594c41fb0c06006d878f4632e35b2efe6e43866f147b8919926cf1bb31b92373f90ad408b188cd9d0bcb50e1fd0795c0906c34cef82253424a92fe1f54e5240a1808711ddd", ['\x00', '\x00', '\x00']}, 0x378) dup(0xffffffffffffffff) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000240)='./file1\x00', 0x119) 13:11:09 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_mount_image$tmpfs(&(0x7f0000000200), &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0061b12a276fef7cd05cd6f5c1c31bdabcff96c5f823ea2c72b8388c842e7844173b905a88c516af186f9a8f9ca0da77552bcf84437763ac9863fb3833a009000000f4476a9311598548f490265c811c56d1ae6146559b2095356b38a6e497cdb3ee99b400"/112]) name_to_handle_at(r0, &(0x7f0000000000)='\x00', &(0x7f00000001c0)=@reiserfs_5={0x14}, &(0x7f0000000280), 0x1000) 13:11:09 executing program 2: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000080)={'syz_tun\x00', &(0x7f00000003c0)=@ethtool_perm_addr}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000001c0)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r3, 0x40082102, &(0x7f0000000240)=r4) r5 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f00000004c0)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000440008000f801", 0x17}, {0x0, 0x0, 0xa00}, {&(0x7f0000000440)="636f62515c82f585d0", 0x9}, {&(0x7f0000000480)="55b88e29f1f6194a23a494aa231365fa5a622b9b5d661253a8a36eee", 0x1c, 0x100020000000000}], 0x0, &(0x7f0000000140)=ANY=[]) fspick(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) openat(r5, &(0x7f0000000180)='./file0\x00', 0x100, 0x81) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000040)) 13:11:09 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_mount_image$tmpfs(&(0x7f0000000200), &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0061b12a276fef7cd05cd6f5c1c31bdabcff96c5f823ea2c72b8388c842e7844173b905a88c516af186f9a8f9ca0da77552bcf84437763ac9863fb3833a009000000f4476a9311598548f490265c811c56d1ae6146559b2095356b38a6e497cdb3ee99b400"/112]) name_to_handle_at(r0, &(0x7f0000000000)='\x00', &(0x7f00000001c0)=@reiserfs_5={0x14}, &(0x7f0000000280), 0x1000) [ 123.009496] loop2: detected capacity change from 0 to 264192 [ 123.822119] audit: type=1400 audit(1664543470.737:9): avc: denied { setattr } for pid=3850 comm="syz-executor.6" name="fscreate" dev="proc" ino=13909 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=file permissive=1 VM DIAGNOSIS: 13:11:09 Registers: info registers vcpu 0 RAX=ffffffff816c53cc RBX=0000000000000001 RCX=1ffff11003e95eb0 RDX=dffffc0000000000 RSI=ffff88801f4afc48 RDI=ffff88801f4afc48 RBP=ffff88801f4af580 RSP=ffff88801f4af4a8 R8 =ffffffff85ed0500 R9 =ffffffff85ed0504 R10=ffffed1003e95eb2 R11=ffff88801f4af568 R12=ffff88801f4af569 R13=ffff88801f4af588 R14=ffff88801f4af528 R15=ffffffff85ed0505 RIP=ffffffff8111aba6 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fbb36dd9570 CR3=000000000e96a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 2e6f747079726362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00312e312e6f732e 6f74707972636269 YMM03=0000000000000000 0000000000000000 6c2f756e672d7875 6e696c2d34365f36 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000002b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff888030f37690 R8 =0000000000000001 R9 =000000000000000a R10=000000000000002b R11=0000000000000001 R12=000000000000002b R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0 RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fab5a07c700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f3fddca2b90 CR3=000000001f6d6000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fab5cbed7c0 00007fab5cbed7c8 YMM02=0000000000000000 0000000000000000 00007fab5cbed7e0 00007fab5cbed7c0 YMM03=0000000000000000 0000000000000000 00007fab5cbed7c8 00007fab5cbed7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000