Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:64884' (ECDSA) to the list of known hosts. 2022/10/31 13:36:56 fuzzer started 2022/10/31 13:36:57 dialing manager at localhost:40945 syzkaller login: [ 35.706847] cgroup: Unknown subsys name 'net' [ 35.814498] cgroup: Unknown subsys name 'rlimit' 2022/10/31 13:37:12 syscalls: 2217 2022/10/31 13:37:12 code coverage: enabled 2022/10/31 13:37:12 comparison tracing: enabled 2022/10/31 13:37:12 extra coverage: enabled 2022/10/31 13:37:12 setuid sandbox: enabled 2022/10/31 13:37:12 namespace sandbox: enabled 2022/10/31 13:37:12 Android sandbox: enabled 2022/10/31 13:37:12 fault injection: enabled 2022/10/31 13:37:12 leak checking: enabled 2022/10/31 13:37:12 net packet injection: enabled 2022/10/31 13:37:12 net device setup: enabled 2022/10/31 13:37:12 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/31 13:37:12 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/31 13:37:12 USB emulation: enabled 2022/10/31 13:37:12 hci packet injection: enabled 2022/10/31 13:37:12 wifi device emulation: enabled 2022/10/31 13:37:12 802.15.4 emulation: enabled 2022/10/31 13:37:12 fetching corpus: 0, signal 0/2000 (executing program) 2022/10/31 13:37:12 fetching corpus: 50, signal 31527/35084 (executing program) 2022/10/31 13:37:12 fetching corpus: 100, signal 42079/47196 (executing program) 2022/10/31 13:37:12 fetching corpus: 150, signal 57953/64353 (executing program) 2022/10/31 13:37:13 fetching corpus: 200, signal 68626/76365 (executing program) 2022/10/31 13:37:13 fetching corpus: 250, signal 74176/83249 (executing program) 2022/10/31 13:37:13 fetching corpus: 300, signal 81882/92118 (executing program) 2022/10/31 13:37:13 fetching corpus: 350, signal 85321/96847 (executing program) 2022/10/31 13:37:13 fetching corpus: 400, signal 90088/102772 (executing program) 2022/10/31 13:37:13 fetching corpus: 450, signal 96380/110031 (executing program) 2022/10/31 13:37:13 fetching corpus: 500, signal 101225/115894 (executing program) 2022/10/31 13:37:14 fetching corpus: 550, signal 105458/121129 (executing program) 2022/10/31 13:37:14 fetching corpus: 600, signal 109225/125917 (executing program) 2022/10/31 13:37:14 fetching corpus: 650, signal 113148/130770 (executing program) 2022/10/31 13:37:14 fetching corpus: 700, signal 116259/134782 (executing program) 2022/10/31 13:37:14 fetching corpus: 750, signal 120414/139739 (executing program) 2022/10/31 13:37:14 fetching corpus: 800, signal 123740/143924 (executing program) 2022/10/31 13:37:14 fetching corpus: 850, signal 125981/147055 (executing program) 2022/10/31 13:37:15 fetching corpus: 900, signal 127803/149838 (executing program) 2022/10/31 13:37:15 fetching corpus: 950, signal 130348/153226 (executing program) 2022/10/31 13:37:15 fetching corpus: 1000, signal 133572/157124 (executing program) 2022/10/31 13:37:15 fetching corpus: 1050, signal 136222/160547 (executing program) 2022/10/31 13:37:15 fetching corpus: 1100, signal 137604/162836 (executing program) 2022/10/31 13:37:15 fetching corpus: 1150, signal 139870/165799 (executing program) 2022/10/31 13:37:15 fetching corpus: 1200, signal 141860/168549 (executing program) 2022/10/31 13:37:16 fetching corpus: 1250, signal 143274/170829 (executing program) 2022/10/31 13:37:16 fetching corpus: 1300, signal 144785/173101 (executing program) 2022/10/31 13:37:16 fetching corpus: 1350, signal 146582/175635 (executing program) 2022/10/31 13:37:16 fetching corpus: 1400, signal 148928/178515 (executing program) 2022/10/31 13:37:16 fetching corpus: 1450, signal 151322/181407 (executing program) 2022/10/31 13:37:16 fetching corpus: 1500, signal 153710/184295 (executing program) 2022/10/31 13:37:16 fetching corpus: 1550, signal 155290/186523 (executing program) 2022/10/31 13:37:16 fetching corpus: 1600, signal 156859/188718 (executing program) 2022/10/31 13:37:17 fetching corpus: 1650, signal 158637/191069 (executing program) 2022/10/31 13:37:17 fetching corpus: 1700, signal 161819/194518 (executing program) 2022/10/31 13:37:17 fetching corpus: 1750, signal 164949/197867 (executing program) 2022/10/31 13:37:17 fetching corpus: 1800, signal 166605/199973 (executing program) 2022/10/31 13:37:17 fetching corpus: 1850, signal 167855/201807 (executing program) 2022/10/31 13:37:17 fetching corpus: 1900, signal 169290/203745 (executing program) 2022/10/31 13:37:17 fetching corpus: 1950, signal 170606/205614 (executing program) 2022/10/31 13:37:18 fetching corpus: 2000, signal 172493/207898 (executing program) 2022/10/31 13:37:18 fetching corpus: 2050, signal 173967/209802 (executing program) 2022/10/31 13:37:18 fetching corpus: 2100, signal 175688/211888 (executing program) 2022/10/31 13:37:18 fetching corpus: 2150, signal 177394/213905 (executing program) 2022/10/31 13:37:18 fetching corpus: 2200, signal 178860/215738 (executing program) 2022/10/31 13:37:18 fetching corpus: 2250, signal 180141/217466 (executing program) 2022/10/31 13:37:18 fetching corpus: 2300, signal 181045/218891 (executing program) 2022/10/31 13:37:19 fetching corpus: 2350, signal 182259/220534 (executing program) 2022/10/31 13:37:19 fetching corpus: 2400, signal 183531/222182 (executing program) 2022/10/31 13:37:19 fetching corpus: 2450, signal 184941/223896 (executing program) 2022/10/31 13:37:19 fetching corpus: 2500, signal 186046/225390 (executing program) 2022/10/31 13:37:19 fetching corpus: 2550, signal 187383/227051 (executing program) 2022/10/31 13:37:19 fetching corpus: 2600, signal 188412/228512 (executing program) 2022/10/31 13:37:19 fetching corpus: 2650, signal 189955/230278 (executing program) 2022/10/31 13:37:20 fetching corpus: 2700, signal 190911/231669 (executing program) 2022/10/31 13:37:20 fetching corpus: 2750, signal 192074/233124 (executing program) 2022/10/31 13:37:20 fetching corpus: 2800, signal 192985/234455 (executing program) 2022/10/31 13:37:20 fetching corpus: 2850, signal 194048/235895 (executing program) 2022/10/31 13:37:20 fetching corpus: 2900, signal 195364/237421 (executing program) 2022/10/31 13:37:20 fetching corpus: 2950, signal 196556/238843 (executing program) 2022/10/31 13:37:20 fetching corpus: 3000, signal 197683/240235 (executing program) 2022/10/31 13:37:21 fetching corpus: 3050, signal 198987/241750 (executing program) 2022/10/31 13:37:21 fetching corpus: 3100, signal 200335/243235 (executing program) 2022/10/31 13:37:21 fetching corpus: 3150, signal 201664/244676 (executing program) 2022/10/31 13:37:21 fetching corpus: 3200, signal 202677/245957 (executing program) 2022/10/31 13:37:21 fetching corpus: 3250, signal 203228/246923 (executing program) 2022/10/31 13:37:21 fetching corpus: 3300, signal 204151/248121 (executing program) 2022/10/31 13:37:21 fetching corpus: 3350, signal 205426/249474 (executing program) 2022/10/31 13:37:22 fetching corpus: 3400, signal 206647/250828 (executing program) 2022/10/31 13:37:22 fetching corpus: 3450, signal 207538/251927 (executing program) 2022/10/31 13:37:22 fetching corpus: 3500, signal 208270/252953 (executing program) 2022/10/31 13:37:22 fetching corpus: 3550, signal 209011/254019 (executing program) 2022/10/31 13:37:22 fetching corpus: 3600, signal 210128/255199 (executing program) 2022/10/31 13:37:22 fetching corpus: 3650, signal 211428/256491 (executing program) 2022/10/31 13:37:22 fetching corpus: 3700, signal 212273/257569 (executing program) 2022/10/31 13:37:23 fetching corpus: 3750, signal 213651/258882 (executing program) 2022/10/31 13:37:23 fetching corpus: 3800, signal 214609/260016 (executing program) 2022/10/31 13:37:23 fetching corpus: 3850, signal 215292/260941 (executing program) 2022/10/31 13:37:23 fetching corpus: 3900, signal 216074/261934 (executing program) 2022/10/31 13:37:23 fetching corpus: 3950, signal 216882/262921 (executing program) 2022/10/31 13:37:23 fetching corpus: 4000, signal 217561/263805 (executing program) 2022/10/31 13:37:23 fetching corpus: 4050, signal 218107/264620 (executing program) 2022/10/31 13:37:23 fetching corpus: 4100, signal 218996/265653 (executing program) 2022/10/31 13:37:24 fetching corpus: 4150, signal 219603/266466 (executing program) 2022/10/31 13:37:24 fetching corpus: 4200, signal 220316/267336 (executing program) 2022/10/31 13:37:24 fetching corpus: 4249, signal 221178/268200 (executing program) 2022/10/31 13:37:24 fetching corpus: 4299, signal 221998/269084 (executing program) 2022/10/31 13:37:24 fetching corpus: 4349, signal 222687/269937 (executing program) 2022/10/31 13:37:24 fetching corpus: 4399, signal 223697/270897 (executing program) 2022/10/31 13:37:24 fetching corpus: 4448, signal 224483/271760 (executing program) 2022/10/31 13:37:25 fetching corpus: 4498, signal 225369/272640 (executing program) 2022/10/31 13:37:25 fetching corpus: 4548, signal 226304/273534 (executing program) 2022/10/31 13:37:25 fetching corpus: 4598, signal 227106/274359 (executing program) 2022/10/31 13:37:25 fetching corpus: 4648, signal 229086/275629 (executing program) 2022/10/31 13:37:25 fetching corpus: 4698, signal 229592/276336 (executing program) 2022/10/31 13:37:25 fetching corpus: 4748, signal 230645/277188 (executing program) 2022/10/31 13:37:25 fetching corpus: 4798, signal 231726/278068 (executing program) 2022/10/31 13:37:25 fetching corpus: 4848, signal 232229/278748 (executing program) 2022/10/31 13:37:26 fetching corpus: 4898, signal 232849/279440 (executing program) 2022/10/31 13:37:26 fetching corpus: 4948, signal 233733/280202 (executing program) 2022/10/31 13:37:26 fetching corpus: 4998, signal 234681/281011 (executing program) 2022/10/31 13:37:26 fetching corpus: 5048, signal 235135/281582 (executing program) 2022/10/31 13:37:26 fetching corpus: 5098, signal 235699/282217 (executing program) 2022/10/31 13:37:26 fetching corpus: 5148, signal 236124/282791 (executing program) 2022/10/31 13:37:26 fetching corpus: 5198, signal 236726/283440 (executing program) 2022/10/31 13:37:26 fetching corpus: 5248, signal 237347/284084 (executing program) 2022/10/31 13:37:26 fetching corpus: 5298, signal 237992/284725 (executing program) 2022/10/31 13:37:27 fetching corpus: 5348, signal 238776/285362 (executing program) 2022/10/31 13:37:27 fetching corpus: 5398, signal 239271/285938 (executing program) 2022/10/31 13:37:27 fetching corpus: 5448, signal 240137/286586 (executing program) 2022/10/31 13:37:27 fetching corpus: 5498, signal 240873/287231 (executing program) 2022/10/31 13:37:27 fetching corpus: 5548, signal 241345/287759 (executing program) 2022/10/31 13:37:27 fetching corpus: 5598, signal 241906/288291 (executing program) 2022/10/31 13:37:27 fetching corpus: 5648, signal 242514/288884 (executing program) 2022/10/31 13:37:27 fetching corpus: 5698, signal 243154/289456 (executing program) 2022/10/31 13:37:28 fetching corpus: 5748, signal 243778/290022 (executing program) 2022/10/31 13:37:28 fetching corpus: 5798, signal 244325/290608 (executing program) 2022/10/31 13:37:28 fetching corpus: 5848, signal 245214/291195 (executing program) 2022/10/31 13:37:28 fetching corpus: 5898, signal 245702/291656 (executing program) 2022/10/31 13:37:28 fetching corpus: 5948, signal 246502/292185 (executing program) 2022/10/31 13:37:28 fetching corpus: 5998, signal 246980/292671 (executing program) 2022/10/31 13:37:28 fetching corpus: 6048, signal 247403/293147 (executing program) 2022/10/31 13:37:29 fetching corpus: 6098, signal 248303/293694 (executing program) 2022/10/31 13:37:29 fetching corpus: 6148, signal 249055/294201 (executing program) 2022/10/31 13:37:29 fetching corpus: 6198, signal 249446/294653 (executing program) 2022/10/31 13:37:29 fetching corpus: 6248, signal 249910/295098 (executing program) 2022/10/31 13:37:29 fetching corpus: 6298, signal 250510/295550 (executing program) 2022/10/31 13:37:29 fetching corpus: 6347, signal 251217/296058 (executing program) 2022/10/31 13:37:29 fetching corpus: 6397, signal 251904/296510 (executing program) 2022/10/31 13:37:30 fetching corpus: 6447, signal 252455/296928 (executing program) 2022/10/31 13:37:30 fetching corpus: 6497, signal 252873/297336 (executing program) 2022/10/31 13:37:30 fetching corpus: 6547, signal 253550/297756 (executing program) 2022/10/31 13:37:30 fetching corpus: 6596, signal 254197/298159 (executing program) 2022/10/31 13:37:30 fetching corpus: 6645, signal 254545/298536 (executing program) 2022/10/31 13:37:30 fetching corpus: 6695, signal 255107/298925 (executing program) 2022/10/31 13:37:30 fetching corpus: 6745, signal 255908/299341 (executing program) 2022/10/31 13:37:31 fetching corpus: 6795, signal 256309/299712 (executing program) 2022/10/31 13:37:31 fetching corpus: 6844, signal 256823/300050 (executing program) 2022/10/31 13:37:31 fetching corpus: 6894, signal 257180/300400 (executing program) 2022/10/31 13:37:31 fetching corpus: 6943, signal 258053/300792 (executing program) 2022/10/31 13:37:31 fetching corpus: 6992, signal 258880/301152 (executing program) 2022/10/31 13:37:31 fetching corpus: 7042, signal 259230/301495 (executing program) 2022/10/31 13:37:31 fetching corpus: 7092, signal 259792/301797 (executing program) 2022/10/31 13:37:32 fetching corpus: 7142, signal 260253/302125 (executing program) 2022/10/31 13:37:32 fetching corpus: 7191, signal 260799/302425 (executing program) 2022/10/31 13:37:32 fetching corpus: 7238, signal 261508/302759 (executing program) 2022/10/31 13:37:32 fetching corpus: 7287, signal 262084/303041 (executing program) 2022/10/31 13:37:32 fetching corpus: 7336, signal 262461/303325 (executing program) 2022/10/31 13:37:32 fetching corpus: 7386, signal 263043/303682 (executing program) 2022/10/31 13:37:32 fetching corpus: 7436, signal 263635/303990 (executing program) 2022/10/31 13:37:33 fetching corpus: 7486, signal 264134/304277 (executing program) 2022/10/31 13:37:33 fetching corpus: 7536, signal 264972/304303 (executing program) 2022/10/31 13:37:33 fetching corpus: 7586, signal 265355/304304 (executing program) 2022/10/31 13:37:33 fetching corpus: 7636, signal 265897/304304 (executing program) 2022/10/31 13:37:33 fetching corpus: 7686, signal 266411/304304 (executing program) 2022/10/31 13:37:33 fetching corpus: 7736, signal 266876/304305 (executing program) 2022/10/31 13:37:33 fetching corpus: 7786, signal 267327/304306 (executing program) 2022/10/31 13:37:33 fetching corpus: 7836, signal 267758/304306 (executing program) 2022/10/31 13:37:34 fetching corpus: 7886, signal 268244/304383 (executing program) 2022/10/31 13:37:34 fetching corpus: 7935, signal 268503/304385 (executing program) 2022/10/31 13:37:34 fetching corpus: 7985, signal 268989/304385 (executing program) 2022/10/31 13:37:34 fetching corpus: 8035, signal 269337/304385 (executing program) 2022/10/31 13:37:34 fetching corpus: 8085, signal 269740/304385 (executing program) 2022/10/31 13:37:34 fetching corpus: 8135, signal 270104/304386 (executing program) 2022/10/31 13:37:34 fetching corpus: 8185, signal 270510/304387 (executing program) 2022/10/31 13:37:34 fetching corpus: 8235, signal 271033/304438 (executing program) 2022/10/31 13:37:35 fetching corpus: 8285, signal 271641/304438 (executing program) 2022/10/31 13:37:35 fetching corpus: 8335, signal 272147/304438 (executing program) 2022/10/31 13:37:35 fetching corpus: 8385, signal 273182/304438 (executing program) 2022/10/31 13:37:35 fetching corpus: 8435, signal 273682/304439 (executing program) 2022/10/31 13:37:35 fetching corpus: 8485, signal 274091/304439 (executing program) 2022/10/31 13:37:35 fetching corpus: 8535, signal 274527/304442 (executing program) 2022/10/31 13:37:35 fetching corpus: 8585, signal 275038/304442 (executing program) 2022/10/31 13:37:35 fetching corpus: 8635, signal 275495/304442 (executing program) 2022/10/31 13:37:36 fetching corpus: 8684, signal 276005/304447 (executing program) 2022/10/31 13:37:36 fetching corpus: 8734, signal 276587/304447 (executing program) 2022/10/31 13:37:36 fetching corpus: 8784, signal 276983/304453 (executing program) 2022/10/31 13:37:36 fetching corpus: 8834, signal 277235/304453 (executing program) 2022/10/31 13:37:36 fetching corpus: 8884, signal 277648/304453 (executing program) 2022/10/31 13:37:36 fetching corpus: 8934, signal 278317/304453 (executing program) 2022/10/31 13:37:36 fetching corpus: 8984, signal 278824/304461 (executing program) 2022/10/31 13:37:37 fetching corpus: 9034, signal 279151/304473 (executing program) 2022/10/31 13:37:37 fetching corpus: 9084, signal 279622/304473 (executing program) 2022/10/31 13:37:37 fetching corpus: 9134, signal 279949/304473 (executing program) 2022/10/31 13:37:37 fetching corpus: 9184, signal 280491/304473 (executing program) 2022/10/31 13:37:37 fetching corpus: 9234, signal 280793/304473 (executing program) 2022/10/31 13:37:37 fetching corpus: 9284, signal 281344/304473 (executing program) 2022/10/31 13:37:37 fetching corpus: 9334, signal 281868/304473 (executing program) 2022/10/31 13:37:38 fetching corpus: 9384, signal 282728/304473 (executing program) 2022/10/31 13:37:38 fetching corpus: 9432, signal 283051/304476 (executing program) 2022/10/31 13:37:38 fetching corpus: 9481, signal 283328/304476 (executing program) 2022/10/31 13:37:38 fetching corpus: 9531, signal 283767/304476 (executing program) 2022/10/31 13:37:38 fetching corpus: 9580, signal 284192/304476 (executing program) 2022/10/31 13:37:38 fetching corpus: 9630, signal 284566/304485 (executing program) 2022/10/31 13:37:38 fetching corpus: 9680, signal 284941/304488 (executing program) 2022/10/31 13:37:38 fetching corpus: 9729, signal 285143/304488 (executing program) 2022/10/31 13:37:39 fetching corpus: 9779, signal 285675/304488 (executing program) 2022/10/31 13:37:39 fetching corpus: 9829, signal 286076/304488 (executing program) 2022/10/31 13:37:39 fetching corpus: 9879, signal 286323/304490 (executing program) 2022/10/31 13:37:39 fetching corpus: 9928, signal 286766/304490 (executing program) 2022/10/31 13:37:39 fetching corpus: 9978, signal 287067/304497 (executing program) 2022/10/31 13:37:39 fetching corpus: 10027, signal 287489/304497 (executing program) 2022/10/31 13:37:40 fetching corpus: 10077, signal 287698/304500 (executing program) 2022/10/31 13:37:40 fetching corpus: 10126, signal 288035/304500 (executing program) 2022/10/31 13:37:40 fetching corpus: 10176, signal 288372/304504 (executing program) 2022/10/31 13:37:40 fetching corpus: 10226, signal 288747/304504 (executing program) 2022/10/31 13:37:40 fetching corpus: 10276, signal 289202/304507 (executing program) 2022/10/31 13:37:40 fetching corpus: 10326, signal 289563/304514 (executing program) 2022/10/31 13:37:40 fetching corpus: 10376, signal 289861/304514 (executing program) 2022/10/31 13:37:40 fetching corpus: 10426, signal 290162/304514 (executing program) 2022/10/31 13:37:41 fetching corpus: 10476, signal 290499/304514 (executing program) 2022/10/31 13:37:41 fetching corpus: 10526, signal 290862/304514 (executing program) 2022/10/31 13:37:41 fetching corpus: 10576, signal 291116/304514 (executing program) 2022/10/31 13:37:41 fetching corpus: 10625, signal 291570/304548 (executing program) 2022/10/31 13:37:41 fetching corpus: 10675, signal 291910/304548 (executing program) 2022/10/31 13:37:41 fetching corpus: 10725, signal 292280/304558 (executing program) 2022/10/31 13:37:41 fetching corpus: 10775, signal 292769/304558 (executing program) 2022/10/31 13:37:42 fetching corpus: 10824, signal 293059/304558 (executing program) 2022/10/31 13:37:42 fetching corpus: 10874, signal 293391/304561 (executing program) 2022/10/31 13:37:42 fetching corpus: 10924, signal 293643/304561 (executing program) 2022/10/31 13:37:42 fetching corpus: 10974, signal 294001/304561 (executing program) 2022/10/31 13:37:42 fetching corpus: 11023, signal 294419/304561 (executing program) 2022/10/31 13:37:42 fetching corpus: 11072, signal 294950/304564 (executing program) 2022/10/31 13:37:42 fetching corpus: 11121, signal 295173/304564 (executing program) 2022/10/31 13:37:43 fetching corpus: 11171, signal 295684/304564 (executing program) 2022/10/31 13:37:43 fetching corpus: 11220, signal 295982/304565 (executing program) 2022/10/31 13:37:43 fetching corpus: 11269, signal 296320/304575 (executing program) 2022/10/31 13:37:43 fetching corpus: 11319, signal 296639/304575 (executing program) 2022/10/31 13:37:43 fetching corpus: 11368, signal 296977/304575 (executing program) 2022/10/31 13:37:43 fetching corpus: 11418, signal 297449/304575 (executing program) 2022/10/31 13:37:43 fetching corpus: 11468, signal 297685/304580 (executing program) 2022/10/31 13:37:43 fetching corpus: 11518, signal 297923/304582 (executing program) 2022/10/31 13:37:44 fetching corpus: 11533, signal 298080/304584 (executing program) 2022/10/31 13:37:44 fetching corpus: 11533, signal 298080/304584 (executing program) 2022/10/31 13:37:46 starting 8 fuzzer processes 13:37:46 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x21, 0x0, 0x0) 13:37:46 executing program 1: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)={0x28, r0, 0x1, 0x0, 0x0, {{0x55}, {@val={0x8, 0x1, 0xfffffffc}, @void, @val={0xc, 0x99, {0x1}}}}}, 0x28}}, 0x0) 13:37:46 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r0, 0x0, 0x15, 0x0, 0x0) 13:37:46 executing program 2: openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000017c0), 0x0, 0x0) 13:37:46 executing program 5: futex(0x0, 0x9, 0x0, 0x0, 0x0, 0x0) 13:37:46 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4) sendmmsg$inet6(r0, &(0x7f0000002f40)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001900)="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", 0x7ffff000}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) [ 85.031949] audit: type=1400 audit(1667223466.901:6): avc: denied { execmem } for pid=282 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 13:37:46 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0xfd}, r3}, 0x14) sendmmsg$inet6(r0, &(0x7f00000006c0)=[{{&(0x7f0000000240)={0xa, 0x4e24, 0x0, @empty}, 0x1c, 0x0, 0x0, &(0x7f0000001b00)=[@pktinfo={{0x24, 0x29, 0x32, {@dev, r3}}}], 0x28}}], 0x1, 0x0) 13:37:46 executing program 7: mlock2(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0) shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0) r0 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x2000) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) mmap$perf(&(0x7f0000fed000/0x3000)=nil, 0x3000, 0x0, 0x13, r1, 0x4) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/route\x00') perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) perf_event_open(&(0x7f00000001c0)={0x4, 0x80, 0x1, 0x8a, 0x20, 0xa9, 0x0, 0x0, 0x8, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, @perf_config_ext={0xa000000000000000, 0xa8f}, 0x3a00, 0x5, 0x80000000, 0x4, 0x0, 0x6, 0x3c3f, 0x0, 0x6, 0x0, 0x3}, 0x0, 0x7, 0xffffffffffffffff, 0x2) openat2(r2, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x200, 0x21, 0x1b}, 0x18) mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096) r4 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r3, 0x40089413, &(0x7f0000000180)=0x1) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) mremap(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffe000/0x2000)=nil) [ 86.305466] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 86.308053] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 86.309534] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 86.312418] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 86.314350] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 86.315865] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 86.320752] Bluetooth: hci0: HCI_REQ-0x0c1a [ 86.353720] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.369842] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 86.371456] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.382874] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 86.440363] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 86.442799] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 86.444361] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.445412] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 86.447260] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 86.448682] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 86.449556] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 86.450006] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 86.450477] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 86.451968] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.453868] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 86.455537] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 86.456552] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 86.456915] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 86.461730] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 86.462728] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 86.463664] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 86.463922] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 86.467190] Bluetooth: hci5: HCI_REQ-0x0c1a [ 86.468372] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.478418] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 86.479914] Bluetooth: hci1: HCI_REQ-0x0c1a [ 86.487999] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 86.492402] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.493864] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 86.495846] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 86.495966] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 86.498031] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 86.499568] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 86.501018] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 86.501458] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 86.506247] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 86.507541] Bluetooth: hci2: HCI_REQ-0x0c1a [ 86.511489] Bluetooth: hci3: HCI_REQ-0x0c1a [ 86.515193] Bluetooth: hci7: HCI_REQ-0x0c1a [ 86.521554] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 86.523039] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 86.527922] Bluetooth: hci6: HCI_REQ-0x0c1a [ 88.392381] Bluetooth: hci0: command 0x0409 tx timeout [ 88.456268] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 88.520260] Bluetooth: hci1: command 0x0409 tx timeout [ 88.521213] Bluetooth: hci7: command 0x0409 tx timeout [ 88.521882] Bluetooth: hci2: command 0x0409 tx timeout [ 88.522555] Bluetooth: hci5: command 0x0409 tx timeout [ 88.584179] Bluetooth: hci3: command 0x0409 tx timeout [ 88.584996] Bluetooth: hci6: command 0x0409 tx timeout [ 90.441499] Bluetooth: hci0: command 0x041b tx timeout [ 90.569303] Bluetooth: hci5: command 0x041b tx timeout [ 90.569779] Bluetooth: hci2: command 0x041b tx timeout [ 90.570294] Bluetooth: hci7: command 0x041b tx timeout [ 90.570711] Bluetooth: hci1: command 0x041b tx timeout [ 90.633200] Bluetooth: hci6: command 0x041b tx timeout [ 90.633721] Bluetooth: hci3: command 0x041b tx timeout [ 92.065872] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 92.074072] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 92.084420] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 92.122047] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 92.139538] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 92.145708] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 92.175144] Bluetooth: hci4: HCI_REQ-0x0c1a [ 92.488835] Bluetooth: hci0: command 0x040f tx timeout [ 92.616228] Bluetooth: hci1: command 0x040f tx timeout [ 92.616972] Bluetooth: hci7: command 0x040f tx timeout [ 92.618045] Bluetooth: hci2: command 0x040f tx timeout [ 92.618731] Bluetooth: hci5: command 0x040f tx timeout [ 92.680190] Bluetooth: hci3: command 0x040f tx timeout [ 92.681153] Bluetooth: hci6: command 0x040f tx timeout [ 94.217151] Bluetooth: hci4: command 0x0409 tx timeout [ 94.537624] Bluetooth: hci0: command 0x0419 tx timeout [ 94.664200] Bluetooth: hci5: command 0x0419 tx timeout [ 94.664595] Bluetooth: hci2: command 0x0419 tx timeout [ 94.664929] Bluetooth: hci7: command 0x0419 tx timeout [ 94.665290] Bluetooth: hci1: command 0x0419 tx timeout [ 94.729146] Bluetooth: hci6: command 0x0419 tx timeout [ 94.729540] Bluetooth: hci3: command 0x0419 tx timeout [ 96.265122] Bluetooth: hci4: command 0x041b tx timeout [ 98.312185] Bluetooth: hci4: command 0x040f tx timeout [ 100.360220] Bluetooth: hci4: command 0x0419 tx timeout [ 142.998449] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 142.999579] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 143.002506] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 143.266982] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.268947] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 143.271358] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 144.387878] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.388925] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.391115] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 144.398521] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.399821] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.401919] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 144.555853] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.556499] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.558054] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 144.575223] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.575799] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.577200] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 147.549293] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 147.550003] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 147.551976] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 147.598335] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 147.599038] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 147.600822] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 13:38:49 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, 0x0) fsconfig$FSCONFIG_SET_FD(r2, 0x5, 0x0, 0x0, 0xffffffffffffffff) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0xa015000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x11, 0x0, 0x0) write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x7}, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000000c0)="05ff232ef592436bf2d9", 0xa}, {&(0x7f0000000100)="9f", 0x1}], 0x2, 0x0, 0x0, 0x0) sendfile(r3, r0, 0x0, 0xfffffdef) [ 148.089861] loop6: detected capacity change from 0 to 40 [ 148.123839] audit: type=1400 audit(1667223529.992:7): avc: denied { open } for pid=3881 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 148.149458] audit: type=1400 audit(1667223530.018:8): avc: denied { kernel } for pid=3881 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 148.197473] hrtimer: interrupt took 28203 ns [ 148.458192] syz-executor.6: attempt to access beyond end of device [ 148.458192] loop6: rw=2049, sector=40, nr_sectors = 4 limit=40 [ 148.462964] Buffer I/O error on dev loop6, logical block 10, lost async page write [ 148.508599] syz-executor.6: attempt to access beyond end of device [ 148.508599] loop6: rw=2049, sector=40, nr_sectors = 4 limit=40 [ 148.510199] Buffer I/O error on dev loop6, logical block 10, lost async page write 13:38:50 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, 0x0) fsconfig$FSCONFIG_SET_FD(r2, 0x5, 0x0, 0x0, 0xffffffffffffffff) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0xa015000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x11, 0x0, 0x0) write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x7}, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000000c0)="05ff232ef592436bf2d9", 0xa}, {&(0x7f0000000100)="9f", 0x1}], 0x2, 0x0, 0x0, 0x0) sendfile(r3, r0, 0x0, 0xfffffdef) [ 148.601995] loop6: detected capacity change from 0 to 40 [ 148.798646] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 148.801532] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 148.805656] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 148.806741] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 148.856356] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 148.858816] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 148.873516] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 148.884798] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 148.885718] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 148.893488] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 148.894558] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 148.898317] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 148.909377] Bluetooth: hci1: HCI_REQ-0x0c1a [ 148.928549] Bluetooth: hci6: HCI_REQ-0x0c1a [ 149.309897] syz-executor.6: attempt to access beyond end of device [ 149.309897] loop6: rw=2049, sector=40, nr_sectors = 4 limit=40 [ 149.312665] Buffer I/O error on dev loop6, logical block 10, lost async page write 13:38:51 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, 0x0) fsconfig$FSCONFIG_SET_FD(r2, 0x5, 0x0, 0x0, 0xffffffffffffffff) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0xa015000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x11, 0x0, 0x0) write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x7}, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000000c0)="05ff232ef592436bf2d9", 0xa}, {&(0x7f0000000100)="9f", 0x1}], 0x2, 0x0, 0x0, 0x0) sendfile(r3, r0, 0x0, 0xfffffdef) [ 149.422529] loop6: detected capacity change from 0 to 40 [ 149.665575] syz-executor.6: attempt to access beyond end of device [ 149.665575] loop6: rw=2049, sector=40, nr_sectors = 4 limit=40 [ 149.666713] Buffer I/O error on dev loop6, logical block 10, lost async page write 13:38:51 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, 0x0) fsconfig$FSCONFIG_SET_FD(r2, 0x5, 0x0, 0x0, 0xffffffffffffffff) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0xa015000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x11, 0x0, 0x0) write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x7}, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000000c0)="05ff232ef592436bf2d9", 0xa}, {&(0x7f0000000100)="9f", 0x1}], 0x2, 0x0, 0x0, 0x0) sendfile(r3, r0, 0x0, 0xfffffdef) [ 149.759014] loop6: detected capacity change from 0 to 40 [ 149.914379] syz-executor.6: attempt to access beyond end of device [ 149.914379] loop6: rw=2049, sector=40, nr_sectors = 4 limit=40 [ 149.915866] Buffer I/O error on dev loop6, logical block 10, lost async page write 13:38:51 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x428, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = dup3(r0, 0xffffffffffffffff, 0x80000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r0}}, './file0\x00'}) sendfile(0xffffffffffffffff, r2, &(0x7f0000000180)=0x1, 0x9) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e24, 0x7, @remote, 0x8}, 0x1c) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000000)={0x0, 0xffff, 0x0, 0x1}, 0xc) 13:38:52 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x428, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = dup3(r0, 0xffffffffffffffff, 0x80000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r0}}, './file0\x00'}) sendfile(0xffffffffffffffff, r2, &(0x7f0000000180)=0x1, 0x9) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e24, 0x7, @remote, 0x8}, 0x1c) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000000)={0x0, 0xffff, 0x0, 0x1}, 0xc) 13:38:52 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x428, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = dup3(r0, 0xffffffffffffffff, 0x80000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r0}}, './file0\x00'}) sendfile(0xffffffffffffffff, r2, &(0x7f0000000180)=0x1, 0x9) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e24, 0x7, @remote, 0x8}, 0x1c) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000000)={0x0, 0xffff, 0x0, 0x1}, 0xc) [ 150.281135] Bluetooth: hci0: Opcode 0x c03 failed: -110 13:38:52 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x428, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = dup3(r0, 0xffffffffffffffff, 0x80000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r0}}, './file0\x00'}) sendfile(0xffffffffffffffff, r2, &(0x7f0000000180)=0x1, 0x9) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e24, 0x7, @remote, 0x8}, 0x1c) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000000)={0x0, 0xffff, 0x0, 0x1}, 0xc) [ 150.792159] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 150.792228] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 150.793732] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 150.795646] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 150.921222] Bluetooth: hci1: command 0x0409 tx timeout [ 150.984176] Bluetooth: hci6: command 0x0409 tx timeout [ 152.968643] Bluetooth: hci1: command 0x041b tx timeout [ 153.032173] Bluetooth: hci6: command 0x041b tx timeout [ 153.313744] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 153.315068] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 153.317254] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 153.322206] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 153.325688] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 153.326862] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 153.330853] Bluetooth: hci2: HCI_REQ-0x0c1a [ 153.628900] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 153.631029] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 153.633015] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 153.636701] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 153.637649] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 153.639211] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 153.642215] Bluetooth: hci7: HCI_REQ-0x0c1a [ 154.952157] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 155.016157] Bluetooth: hci1: command 0x040f tx timeout [ 155.080188] Bluetooth: hci6: command 0x040f tx timeout [ 155.336179] Bluetooth: hci2: command 0x0409 tx timeout [ 155.592200] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 155.656161] Bluetooth: hci7: command 0x0409 tx timeout [ 155.656243] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 157.064269] Bluetooth: hci1: command 0x0419 tx timeout [ 157.128162] Bluetooth: hci6: command 0x0419 tx timeout [ 157.384141] Bluetooth: hci2: command 0x041b tx timeout [ 157.704131] Bluetooth: hci7: command 0x041b tx timeout [ 158.605689] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 158.606960] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 158.608201] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 158.610526] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 158.611607] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 158.612455] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 158.620632] Bluetooth: hci5: HCI_REQ-0x0c1a [ 159.433138] Bluetooth: hci2: command 0x040f tx timeout [ 159.689142] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 159.752131] Bluetooth: hci7: command 0x040f tx timeout [ 160.328213] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 160.648894] Bluetooth: hci5: command 0x0409 tx timeout [ 161.480234] Bluetooth: hci2: command 0x0419 tx timeout [ 161.801218] Bluetooth: hci7: command 0x0419 tx timeout [ 162.696198] Bluetooth: hci5: command 0x041b tx timeout [ 163.155923] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 163.157804] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 163.161348] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 163.192837] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 163.203681] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 163.206848] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 163.217584] Bluetooth: hci3: HCI_REQ-0x0c1a [ 164.488185] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 164.745342] Bluetooth: hci5: command 0x040f tx timeout [ 165.256202] Bluetooth: hci3: command 0x0409 tx timeout [ 166.792369] Bluetooth: hci5: command 0x0419 tx timeout [ 167.305421] Bluetooth: hci3: command 0x041b tx timeout [ 169.354676] Bluetooth: hci3: command 0x040f tx timeout [ 169.481144] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 171.401376] Bluetooth: hci3: command 0x0419 tx timeout [ 172.570607] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 172.572818] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 172.575645] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 172.581937] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 172.585437] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 172.588437] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 172.602998] Bluetooth: hci0: HCI_REQ-0x0c1a [ 174.664345] Bluetooth: hci0: command 0x0409 tx timeout [ 176.712267] Bluetooth: hci0: command 0x041b tx timeout [ 178.760679] Bluetooth: hci0: command 0x040f tx timeout [ 180.808164] Bluetooth: hci0: command 0x0419 tx timeout [ 189.708638] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.709426] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.710991] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 189.903174] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.904634] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.906973] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 191.796556] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 191.797192] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 191.799913] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 191.997763] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 191.999222] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 192.002715] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 199.895668] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 199.896531] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 199.898368] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 200.009831] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.010680] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 200.012666] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 200.443560] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.444549] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 200.445767] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 200.699367] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.699991] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 200.701629] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 201.735815] BUG: unable to handle page fault for address: ffffed100fffc000 [ 201.736327] #PF: supervisor write access in kernel mode [ 201.736699] #PF: error_code(0x0002) - not-present page [ 201.737050] PGD 7ffd3067 P4D 7ffd3067 PUD 7ffd2067 PMD 7ffd1067 PTE 0 [ 201.737503] Oops: 0002 [#1] PREEMPT SMP KASAN NOPTI [ 201.737840] CPU: 0 PID: 6647 Comm: syz-executor.7 Not tainted 6.1.0-rc3-next-20221031 #1 [ 201.738372] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 201.741428] RIP: 0010:__memset+0x24/0x50 [ 201.741726] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00 [ 201.742916] RSP: 0018:ffff88803de07cc0 EFLAGS: 00010212 [ 201.743298] RAX: 0000000000000000 RBX: ffff88800bff90c0 RCX: 1ffffe21fe6011ab [ 201.743798] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000 [ 201.744302] RBP: ffff88800c02da00 R08: 0000000000000005 R09: ffffed10017ff218 [ 201.744900] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02da00 [ 201.745581] R13: ffff88800bff90c0 R14: ffffffff815f27a0 R15: 1ffff1100119941f [ 201.746241] FS: 00007f6a1cc49700(0000) GS:ffff88806d000000(0000) knlGS:0000000000000000 [ 201.746991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 201.747534] CR2: ffffed100fffc000 CR3: 00000000159d4000 CR4: 0000000000350ef0 [ 201.748190] Call Trace: [ 201.748450] [ 201.748668] kasan_unpoison+0x23/0x60 [ 201.749041] mempool_exit+0x1c2/0x330 [ 201.749415] bioset_exit+0x2c9/0x630 [ 201.749785] disk_release+0x143/0x490 [ 201.750163] ? disk_release+0x0/0x490 [ 201.750538] ? device_release+0x0/0x250 [ 201.750920] device_release+0xa2/0x250 [ 201.751295] ? device_release+0x0/0x250 [ 201.751674] kobject_put+0x173/0x280 [ 201.752032] put_device+0x1b/0x40 [ 201.752373] put_disk+0x41/0x60 [ 201.752710] loop_control_ioctl+0x4d1/0x630 [ 201.753128] ? loop_control_ioctl+0x0/0x630 [ 201.753550] ? loop_control_ioctl+0x0/0x630 [ 201.753961] __x64_sys_ioctl+0x19a/0x220 [ 201.754357] do_syscall_64+0x3b/0xa0 [ 201.754724] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 201.755213] RIP: 0033:0x7f6a1f6d3b19 [ 201.755571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 201.757092] RSP: 002b:00007f6a1cc49188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 201.757587] RAX: ffffffffffffffda RBX: 00007f6a1f7e6f60 RCX: 00007f6a1f6d3b19 [ 201.758058] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000006 [ 201.758518] RBP: 00007f6a1f72df6d R08: 0000000000000000 R09: 0000000000000000 [ 201.758981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.759445] R13: 00007ffc06260fcf R14: 00007f6a1cc49300 R15: 0000000000022000 [ 201.759918] [ 201.760081] Modules linked in: [ 201.760297] CR2: ffffed100fffc000 [ 201.760532] ---[ end trace 0000000000000000 ]--- [ 201.760841] RIP: 0010:__memset+0x24/0x50 [ 201.761127] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00 [ 201.762309] RSP: 0018:ffff88803de07cc0 EFLAGS: 00010212 [ 201.762662] RAX: 0000000000000000 RBX: ffff88800bff90c0 RCX: 1ffffe21fe6011ab [ 201.763124] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000 [ 201.763583] RBP: ffff88800c02da00 R08: 0000000000000005 R09: ffffed10017ff218 [ 201.764043] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02da00 [ 201.764518] R13: ffff88800bff90c0 R14: ffffffff815f27a0 R15: 1ffff1100119941f [ 201.764980] FS: 00007f6a1cc49700(0000) GS:ffff88806d000000(0000) knlGS:0000000000000000 [ 201.765497] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 201.765877] CR2: ffffed100fffc000 CR3: 00000000159d4000 CR4: 0000000000350ef0 [ 201.856823] BUG: unable to handle page fault for address: ffffed100fffc000 [ 201.857319] #PF: supervisor write access in kernel mode [ 201.857653] #PF: error_code(0x0002) - not-present page [ 201.857994] PGD 7ffd3067 P4D 7ffd3067 PUD 7ffd2067 PMD 7ffd1067 PTE 0 [ 201.858528] Oops: 0002 [#2] PREEMPT SMP KASAN NOPTI [ 201.858842] CPU: 1 PID: 6653 Comm: syz-executor.7 Tainted: G D 6.1.0-rc3-next-20221031 #1 [ 201.859506] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 201.860099] RIP: 0010:__memset+0x24/0x50 [ 201.860388] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00 [ 201.861633] RSP: 0018:ffff888041f0fcc0 EFLAGS: 00010212 [ 201.861979] RAX: 0000000000000000 RBX: ffff88800bff9240 RCX: 1ffffe21fe6011b1 [ 201.862528] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000 [ 201.862984] RBP: ffff88800c02da00 R08: 0000000000000005 R09: ffffed10017ff248 [ 201.863434] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02da00 [ 201.863876] R13: ffff88800bff9240 R14: ffffffff815f27a0 R15: 1ffff110011ad81f [ 201.864330] FS: 00007f6a1cc28700(0000) GS:ffff88806d100000(0000) knlGS:0000000000000000 [ 201.864846] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 201.865233] CR2: ffffed100fffc000 CR3: 00000000159d4000 CR4: 0000000000350ee0 [ 201.865698] Call Trace: [ 201.865877] [ 201.866036] kasan_unpoison+0x23/0x60 [ 201.866329] mempool_exit+0x1c2/0x330 [ 201.866685] bioset_exit+0x2c9/0x630 [ 201.866949] ? _raw_spin_unlock+0x24/0x50 [ 201.867278] ? blkg_destroy_all.isra.0+0x157/0x230 [ 201.867661] disk_release+0x143/0x490 [ 201.867917] ? disk_release+0x0/0x490 [ 201.868177] ? device_release+0x0/0x250 [ 201.868539] device_release+0xa2/0x250 [ 201.868808] ? device_release+0x0/0x250 [ 201.869067] kobject_put+0x173/0x280 [ 201.869314] put_device+0x1b/0x40 [ 201.869578] put_disk+0x41/0x60 [ 201.869884] loop_control_ioctl+0x4d1/0x630 [ 201.870182] ? loop_control_ioctl+0x0/0x630 [ 201.870464] ? selinux_file_ioctl+0xb1/0x270 [ 201.870779] ? loop_control_ioctl+0x0/0x630 [ 201.871074] __x64_sys_ioctl+0x19a/0x220 [ 201.871350] do_syscall_64+0x3b/0xa0 [ 201.871615] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 201.871966] RIP: 0033:0x7f6a1f6d3b19 [ 201.872218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 201.873402] RSP: 002b:00007f6a1cc28188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 201.873907] RAX: ffffffffffffffda RBX: 00007f6a1f7e7020 RCX: 00007f6a1f6d3b19 [ 201.874372] RDX: 0000000000000001 RSI: 0000000000004c81 RDI: 0000000000000006 [ 201.874848] RBP: 00007f6a1f72df6d R08: 0000000000000000 R09: 0000000000000000 [ 201.875316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.875778] R13: 00007ffc06260fcf R14: 00007f6a1cc28300 R15: 0000000000022000 [ 201.876259] [ 201.876425] Modules linked in: [ 201.876643] CR2: ffffed100fffc000 [ 201.876879] ---[ end trace 0000000000000000 ]--- [ 201.877190] RIP: 0010:__memset+0x24/0x50 [ 201.877479] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00 [ 201.878631] RSP: 0018:ffff88803de07cc0 EFLAGS: 00010212 [ 201.878971] RAX: 0000000000000000 RBX: ffff88800bff90c0 RCX: 1ffffe21fe6011ab [ 201.879419] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000 [ 201.879865] RBP: ffff88800c02da00 R08: 0000000000000005 R09: ffffed10017ff218 [ 201.880318] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02da00 [ 201.880771] R13: ffff88800bff90c0 R14: ffffffff815f27a0 R15: 1ffff1100119941f [ 201.881215] FS: 00007f6a1cc28700(0000) GS:ffff88806d100000(0000) knlGS:0000000000000000 [ 201.881715] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 201.882085] CR2: ffffed100fffc000 CR3: 00000000159d4000 CR4: 0000000000350ee0 [ 204.069391] ieee80211 phy18: Selected rate control algorithm 'minstrel_ht' [ 204.090000] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 204.090531] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 204.091509] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 204.094011] ieee80211 phy19: Selected rate control algorithm 'minstrel_ht' [ 204.110903] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 204.111545] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 204.112194] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 204.683849] ieee80211 phy20: Selected rate control algorithm 'minstrel_ht' [ 204.703425] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 204.703921] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 204.704544] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 204.712739] ieee80211 phy21: Selected rate control algorithm 'minstrel_ht' [ 204.727320] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 204.727831] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 204.728500] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 207.954011] ieee80211 phy22: Selected rate control algorithm 'minstrel_ht' [ 207.973473] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 207.975304] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 207.976200] ieee80211 phy23: Selected rate control algorithm 'minstrel_ht' [ 207.976989] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 207.994726] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 207.995779] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 207.996830] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready VM DIAGNOSIS: 13:39:43 Registers: info registers vcpu 0 RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff82451091 RDI=ffffffff879a19e0 RBP=ffffffff879a19a0 RSP=ffff88803de07530 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000061 R11=0000000000000001 R12=0000000000000061 R13=ffffffff879a19a0 R14=0000000000000010 R15=ffffffff82451080 RIP=ffffffff824510e9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6a1cc49700 00000000 00000000 GS =0000 ffff88806d000000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe12e8c6a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe12e8c68000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=ffffed100fffc000 CR3=00000000159d4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffff00000000 XMM02=000000000000000000000000000000ff XMM03=00000007ffffffff0000555cb41d4de0 XMM04=0000555cb41cb5f00000555cb41e2840 XMM05=00000000000000070000555cb41d0fb0 XMM06=00000000000000000000000400000009 XMM07=00000000000000000000000000000000 XMM08=2064616572206f742064656c69614600 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000001 RCX=ffff888042037d98 RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000001 RBP=ffff888042037480 RSP=ffff8880420373a8 R8 =ffffffff85ce12f2 R9 =ffffffff85ce12f6 R10=ffffed1008406e92 R11=0000000000036001 R12=ffff888042037469 R13=ffff888042037488 R14=ffff888042037428 R15=ffffffff85ce12f7 RIP=ffffffff81127cec RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806d100000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0807155000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0807153000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0e49753368 CR3=000000002f00c000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=322e6f732e6c6462696c2f756e672d78 XMM02=00322e6f732e6c6462696c2f756e672d XMM03=78756e696c2d34365f3638782f62696c XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000