last executing test programs: 8.894150638s ago: executing program 0 (id=244): r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000480)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRESHEX=0x0, @ANYBLOB="0000000000000000000000000000000000006300770c42d0fff40bdb03393b2f1f340000000000000000a700"], 0x48) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1e, 0x13, r0, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) openat$rfkill(0xffffffffffffff9c, 0x0, 0x801, 0x0) msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x4000, 0x0) msgget$private(0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xf, &(0x7f0000000140)={0xe, 0xa}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x0, 0x3, 0x0) openat$snapshot(0xffffff9c, &(0x7f0000000280), 0xa141, 0x0) unshare(0x68060200) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000000)={'filter\x00', 0x0, 0x0, 0x0, [0xfffffffc, 0x0, 0xed, 0x6]}, &(0x7f0000000080)=0x50) getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x81, &(0x7f00000003c0)={'nat\x00', 0x0, 0x3, 0x0, [0x5, 0x9, 0xfa, 0x6, 0x10000, 0x8001], 0x0, 0x0, 0x0}, &(0x7f0000000440)=0x78) syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340)) r4 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0x40045532, &(0x7f0000000100)) r5 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0) ioctl$SNDCTL_DSP_GETODELAY(r5, 0x80045017, 0x0) syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65) 7.930305553s ago: executing program 0 (id=250): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="471c6889e7b9394e239e740fe2b6b3d0dfb1dbaf84f77a2ca7af7c83c86ad15c6cd899df35f6ce1770c74671b3dec15cff5e7f23f36dd866ae55651e49abc0f5f3d1012c8e60435b2d71c68642e336d31c12498d77b54983227ca4a4364332c15e8a25c00994bef879051446dc4737b7fb80cd4da9e197cfc73f0ba5d175b58059dae215e7636779eca0911cb1cfc744d4ee0b4bc144a181383fb7111cfba5fc8c52c396ba9b79f0afd7b0318640249252298cdf8840d831bc1b57ec05d0404d4dd8e95f0e4901545b632f53a4bd1f7936a2d84867edd7322753537b845b1b42ab2381a91959", @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x35, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) r2 = socket$inet(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4) shutdown(r2, 0x0) recvmmsg(r2, &(0x7f00000066c0), 0xa0d, 0x0, 0x0) 6.670451623s ago: executing program 0 (id=256): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) ioctl$SNDRV_PCM_IOCTL_DRAIN(0xffffffffffffffff, 0x4144, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$inet_udp(0x2, 0x2, 0x0) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7f, 0x0, &(0x7f0000001180)) syz_emit_ethernet(0x85, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaabbaaaaaaaaaa0a884800000200000f0e0000000000004c21e92a076b5eec8cebb498146fae248666abab0aa3fc763ee544652a2e26fcee1d76c4094c77361527677623fe0c2ba7bfb3d3e558d2e59211a6e3e544e3fd55b3da1a61769f7f92da1a9e11680b285a980e151500c97081723716e83719d68c5ab0ed"], &(0x7f0000000340)={0x1, 0x1, [0xdf5, 0x31f, 0x338, 0x79d]}) socket(0x28, 0x2, 0x1) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}, {0x0, 0xc8, 0x2}}}, 0x7) r2 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1ff, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r2, 0xc2c45513, &(0x7f0000000040)={{0x2, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x2, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}) socket$nl_route(0x10, 0x3, 0x0) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x2, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}}, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffde4, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000500)={r3, 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r5 = io_uring_setup(0x25e, &(0x7f0000000080)) io_uring_register$IORING_UNREGISTER_RING_FDS(r5, 0x1b, &(0x7f0000003900)=[{0x0, 0x700, 0x0, 0x0, 0x0}], 0x1) write$tun(r4, &(0x7f0000000440)=ANY=[@ANYBLOB="00000000ffffffffffffaaaaaaaaaabb08004500452c00000000002f9078ac1e0001e00000010000655800189000"], 0xfdef) socket(0x22, 0x800, 0x0) io_setup(0x3, 0x0) r6 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000200), 0xa0201, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r6, 0xc004500a, &(0x7f0000000000)) ioctl$SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f0000000180)=0x6f) write$dsp(r6, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000) syz_emit_ethernet(0x2e, &(0x7f0000000380)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa12080045000020000000000011907f90780170b4c3b563812e3e000000000000000000"], 0x0) 5.82097635s ago: executing program 2 (id=259): r0 = socket(0x40000000015, 0x5, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000000c0)={'syztnl2\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x29, 0x2, 0x8, 0x1, 0x1, @local, @private2, 0x40, 0x20, 0x1, 0x1000}}) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f0000000240)={0x10000000000000, 0x1000000}) r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r3 = openat$cdrom(0xffffff9c, &(0x7f00000001c0), 0x200, 0x0) ioctl$CDROMVOLCTRL(r3, 0x530a, &(0x7f0000000240)={0x1, 0x3, 0x6, 0xc}) r4 = dup(r2) r5 = socket$inet_smc(0x2b, 0x1, 0x0) getsockopt$EBT_SO_GET_INFO(r4, 0x0, 0x80, &(0x7f00000000c0)={'broute\x00', 0x0, 0x0, 0x0, [0x10001, 0x6, 0xb617, 0x5, 0x9f, 0x6]}, &(0x7f0000000140)=0x50) r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r6, 0xc0045540, &(0x7f0000000080)=0xf) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r5, 0x0, 0x61, &(0x7f0000000040)={'filter\x00', 0x4}, 0x64) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), r4) sendmsg$TIPC_NL_BEARER_ADD(r4, &(0x7f0000000600)={&(0x7f0000000200), 0xc, &(0x7f00000005c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="40020000", @ANYRES16=r8, @ANYBLOB="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"], 0x240}, 0x1, 0x0, 0x0, 0x8001}, 0x44ea3b8750c01ff9) r9 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r9, 0x11b, 0x4, &(0x7f0000000080)={0x0, 0x325000, 0x800}, 0x1c) sendmsg$IPSET_CMD_ADD(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) move_pages(0x0, 0x6, &(0x7f0000000080)=[&(0x7f0000008000/0x1000)=nil, &(0x7f0000007000/0x2000)=nil, &(0x7f0000003000/0x1000)=nil, &(0x7f0000000000/0x4000)=nil, &(0x7f0000003000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil], 0x0, &(0x7f0000000600), 0x0) 5.47286505s ago: executing program 1 (id=261): r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) readv(r0, &(0x7f0000003400)=[{&(0x7f0000001080)=""/107, 0x7ffff000}, {&(0x7f0000004c00)=""/4096, 0x1000}], 0x2) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x2) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)=0x7) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000895"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10) r3 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0) ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f00000002c0)={r4, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fcb09fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd0000000000000000000000001100", [0x9, 0xfffffffffffffffd]}}) ioctl$LOOP_GET_STATUS64(r3, 0x4c05, &(0x7f0000000400)) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) 5.350528233s ago: executing program 2 (id=262): socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000340)=[{0x0, 0x5, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x7}, {0x4, 0x2, 0x13, 0x2}, {0x0, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', 0x0, 0x208000, 0x0) wait4(r0, 0x0, 0x2, 0x0) creat(&(0x7f00000002c0)='./file0\x00', 0x0) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = syz_io_uring_setup(0x5981, &(0x7f0000000000)={0x0, 0xef34, 0x2, 0x0, 0x325}, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r4, 0x56a1, 0x1dc1, 0x1e, &(0x7f0000000180)={[0x9, 0x100]}, 0x8) r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) socket$inet(0x2, 0x4000000805, 0x0) 5.124238422s ago: executing program 1 (id=263): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3) r0 = openat$mice(0xffffffffffffff9c, 0x0, 0x82) write$P9_RCREATE(r0, &(0x7f0000000180)={0x18, 0x73, 0x2, {{0x8, 0x2, 0x7}, 0x6}}, 0x18) ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, &(0x7f00000000c0)={0x7, "0a43b81781ee52fe5d1318dedf595fea476cc6aab722e8ac16406f5b4c42cc1b", 0x2, 0x1, 0x3ff, 0x7, 0x11, 0x1, 0x3ff, 0x7}) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={r1, 0xd14, 0xfff, 0xe}) r2 = socket$netlink(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x7, 0x4, 0x18, 0x28e, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1a000000, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'team0\x00'}) r4 = getpid() r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) sendmsg$NL80211_CMD_ABORT_SCAN(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x1c, 0x0, 0xd9b2794f6a139537, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x5) ptrace$cont(0x1f, r4, 0x100, 0x4) r8 = msgget$private(0x0, 0x0) msgrcv(r8, 0x0, 0x0, 0x0, 0x0) msgsnd(r8, &(0x7f0000000380)=ANY=[], 0xe, 0x0) sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0xff05, 0x0, 0x0, {0x0, 0x0, 0x4a00}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x40}}, 0x0) syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) 4.750372821s ago: executing program 3 (id=264): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="471c6889e7b9394e239e740fe2b6b3d0dfb1dbaf84f77a2ca7af7c83c86ad15c6cd899df35f6ce1770c74671b3dec15cff5e7f23f36dd866ae55651e49abc0f5f3d1012c8e60435b2d71c68642e336d31c12498d77b54983227ca4a4364332c15e8a25c00994bef879051446dc4737b7fb80cd4da9e197cfc73f0ba5d175b58059dae215e7636779eca0911cb1cfc744d4ee0b4bc144a181383fb7111cfba5fc8c52c396ba9b79f0afd7b0318640249252298cdf8840d831bc1b57ec05d0404d4dd8e95f0e4901545b632f53a4bd1f7936a2d84867edd7322753537b845b1b42ab2381a91959", @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x35, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) r2 = socket$inet(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4) shutdown(r2, 0x0) recvmmsg(r2, &(0x7f00000066c0), 0xa0d, 0x0, 0x0) 4.420077836s ago: executing program 2 (id=265): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) r3 = dup(r2) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x2000000000000376, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0xa, 0x4}, 0x36, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x5, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r5 = getpid() sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r7, 0x0, 0x0, 0x4810) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) socket$rxrpc(0x21, 0x2, 0xa) connect$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x803}, 0xe) r8 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_bt_hidp_HIDPCONNADD(r8, 0x400448c8, &(0x7f0000000480)={r4, r4, 0x8, 0x0, 0x0, 0x5, 0x81, 0x46d, 0xfff9, 0x3, 0x0, 0x5, 'syz0\x00'}) shutdown(r4, 0x1) write$UHID_INPUT(r3, 0x0, 0x0) sendto$packet(r0, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb1000000080086dd4803", 0x1a, 0x4000, &(0x7f0000000140)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14) 3.846567772s ago: executing program 0 (id=266): r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff) socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000004c0)={&(0x7f0000000340)={0x148, r2, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_KEY={0x30, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x3}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "a5347121b90d1d691336b7524cbcc8cae77ec49927c45cf9c2c94b35682e8dd8"}]}, @NL802154_ATTR_SEC_KEY={0x1c, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xd}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x3}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x2}]}, @NL802154_ATTR_SEC_KEY={0x2c, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "57f92cff91bbe099b76b8f6a9b21f4ca"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "4c30df7ed72f2dbe3255fe59e387a86e"}]}, @NL802154_ATTR_SEC_KEY={0xbc, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x6}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xc}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "ad74525a6ec2b85f3624cb37e20a430b17de59764f20ead7ccc55ab442bccfac"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "bdce0e89dfd3f088a73009c2936e16aa"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "7ddfb500af5fe92ee75f0929931e8925"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "77c8711bbb304a36443a40d64fe98c76afc9448e6327e7e180340f29359c83b5"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "cfe26ee59098f9f7cb32232b83f125d7"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "024475e7b51eb78d44f78dfb11ed683777ef2782c4ca6045490799bb8298b3b2"}]}]}, 0x148}, 0x1, 0x0, 0x0, 0x81}, 0x8014) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) listen(0xffffffffffffffff, 0x0) r6 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r6, 0x40046f41, 0x20000502) r7 = socket$nl_route(0x10, 0x3, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket(0x10, 0x2, 0x0) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r8}, 0x10) syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0xc0842) recvmmsg(r7, &(0x7f0000002ec0), 0x0, 0x2, &(0x7f00000001c0)={0x77359400}) r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r9, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000200)={0x20, r0, 0x329, 0xfffffffc, 0x0, {0x16}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x10000860}, 0x8004) 3.846239557s ago: executing program 3 (id=267): r0 = socket(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000180)=@framed={{}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x3}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000001c0)=0x0) quotactl_fd$Q_SETINFO(r0, 0xffffffff80000601, r1, &(0x7f0000000300)={0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x2}) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x2, 0x80801) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000003240)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r3, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000002c0)=[0x0], &(0x7f0000000340), 0x0, 0x1, 0x0, 0x0, r4}) r6 = socket$kcm(0x10, 0x2, 0x10) writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f08000000480100100000000019002b000a0001000500000000000072080003", 0x33}], 0x1) sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100feff000037153e370248018080351700d1bd", 0x33fe0}], 0x1}, 0x0) ioctl$DRM_IOCTL_MODE_SETPROPERTY(r3, 0xc01064ab, &(0x7f0000000380)={0x0, r5, r4}) r7 = socket$nl_route(0x10, 0x3, 0x0) r8 = socket$netlink(0x10, 0x3, 0x0) r9 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0) getsockname$packet(r9, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r10, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) r11 = socket$nl_netfilter(0x10, 0x3, 0xc) r12 = socket$nl_generic(0x10, 0x3, 0x10) r13 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) eventfd(0x6) ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_AUTHENTICATE(r12, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000100)={0x34, r13, 0x1, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r14}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_SSID={0x4}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x5}]}, 0x34}}, 0x800) sendmsg$nl_route_sched(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0) sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@delchain={0x24, 0x29, 0x7d1cdc3e828018e9, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {0x2}, {0x0, 0xffff}}}, 0x24}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=@delneigh={0x88, 0x1d, 0x400, 0x70bd2c, 0x25dfdbf9, {0x1f, 0x0, 0x0, r10, 0x4, 0x40, 0x4}, [@NDA_CACHEINFO={0x14, 0x3, {0x2, 0x2, 0x8, 0x8}}, @NDA_NH_ID={0x8, 0xd, 0x8}, @NDA_MASTER={0x8, 0x9, 0x6}, @NDA_DST_MAC={0xa, 0x1, @broadcast}, @NDA_PROTOCOL={0x5, 0xc, 0x8}, @NDA_DST_IPV6={0x14, 0x1, @mcast2}, @NDA_FLAGS_EXT={0x8}, @NDA_VNI={0x8, 0x7, 0x6}, @NDA_FLAGS_EXT={0x8}, @NDA_VNI={0x8, 0x7, 0x2}]}, 0x88}, 0x1, 0x0, 0x0, 0x20040855}, 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000940)=ANY=[@ANYBLOB="4400000011002901800000000000000007000000", @ANYRES32=r15, @ANYBLOB="00a0c2378454e41cbb001a800800028004000500080000003e"], 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x200040d0) 3.670418932s ago: executing program 3 (id=268): setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'geneve0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = dup(r1) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x2000000000000376, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0xa, 0x4}, 0x36, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x5, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f00000bd000), 0x800005d, 0x4810) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) socket$rxrpc(0x21, 0x2, 0xa) connect$bt_l2cap(r3, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x803}, 0xe) r7 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f0000000480)={r3, r3, 0x8, 0x0, 0x0, 0x5, 0x81, 0x46d, 0xfff9, 0x3, 0x0, 0x5, 'syz0\x00'}) shutdown(r3, 0x1) write$UHID_INPUT(r2, 0x0, 0x0) sendto$packet(0xffffffffffffffff, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb1000000080086dd4803", 0x1a, 0x4000, &(0x7f0000000140)={0x11, 0x0, r0, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14) 3.668397195s ago: executing program 1 (id=269): r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff) socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000004c0)={&(0x7f0000000340)={0x148, r2, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_KEY={0x30, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x3}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "a5347121b90d1d691336b7524cbcc8cae77ec49927c45cf9c2c94b35682e8dd8"}]}, @NL802154_ATTR_SEC_KEY={0x1c, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xd}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x3}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x2}]}, @NL802154_ATTR_SEC_KEY={0x2c, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "57f92cff91bbe099b76b8f6a9b21f4ca"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "4c30df7ed72f2dbe3255fe59e387a86e"}]}, @NL802154_ATTR_SEC_KEY={0xbc, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x6}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xc}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "ad74525a6ec2b85f3624cb37e20a430b17de59764f20ead7ccc55ab442bccfac"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "bdce0e89dfd3f088a73009c2936e16aa"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "7ddfb500af5fe92ee75f0929931e8925"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "77c8711bbb304a36443a40d64fe98c76afc9448e6327e7e180340f29359c83b5"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "cfe26ee59098f9f7cb32232b83f125d7"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "024475e7b51eb78d44f78dfb11ed683777ef2782c4ca6045490799bb8298b3b2"}]}]}, 0x148}, 0x1, 0x0, 0x0, 0x81}, 0x8014) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) listen(0xffffffffffffffff, 0x0) r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r4, 0x40046f41, 0x20000502) r5 = socket$nl_route(0x10, 0x3, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r6 = socket(0x10, 0x2, 0x0) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r7}, 0x10) syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0xc0842) write(r6, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c) recvmmsg(r5, &(0x7f0000002ec0), 0x0, 0x2, &(0x7f00000001c0)={0x77359400}) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r8, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000200)={0x20, r0, 0x329, 0xfffffffc, 0x0, {0x16}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x10000860}, 0x8004) 3.180448054s ago: executing program 1 (id=270): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) r3 = dup(r2) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x2000000000000376, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0xa, 0x4}, 0x36, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x5, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r5 = getpid() sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r7, &(0x7f00000bd000), 0x800005d, 0x4810) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) socket$rxrpc(0x21, 0x2, 0xa) connect$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x803}, 0xe) r8 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_bt_hidp_HIDPCONNADD(r8, 0x400448c8, &(0x7f0000000480)={r4, r4, 0x8, 0x0, 0x0, 0x5, 0x81, 0x46d, 0xfff9, 0x3, 0x0, 0x5, 'syz0\x00'}) shutdown(r4, 0x1) write$UHID_INPUT(r3, 0x0, 0x0) sendto$packet(r0, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb1000000080086dd4803", 0x1a, 0x4000, &(0x7f0000000140)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14) 2.717561049s ago: executing program 3 (id=271): syz_emit_ethernet(0x3e, &(0x7f0000000500)=ANY=[@ANYBLOB="aaaaaaaaaaaa0380c20000000800470000300004000000069078ac141400ac1e00018903d78903b6000000000000d80b8a8ce83d8e32f14060a6f02dc58923345cdbfe7c49d3771b1bc344ffb0680e97605b852350fbc7237538f69cf935eab6146a0e399028adc2cc040c960bf1a23e54de73202ae31f3e3e47859e413f6824b9513f95920b387fec77adcf104546af9cb1c8716d3714e33d4dadb6e0525019db7acd3f252e59534750f198a6459362e30ac9c5c584fa84c8d4295a2cf7b3793314e917ab28bef46b11b4a3dfbced392a2da8b43620da21853c2733c6e7da000731daaae54c42dfd077da46d0328a917b624d69a720ce9483ae5fb2c33bbdbb4a35d70d9f6253dc7fc39363e396", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0xcc72, 0x0, 0x3}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_ASYNC_CANCEL) io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) chdir(&(0x7f0000000100)='./file0\x00') mkdirat(0xffffffffffffff9c, 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)={0xb8, 0x39, 0x200, 0x70bd25, 0x25dfdbfc, {0x16}, [@typed={0x4, 0xe1}, @generic="d2c5ff46b6498e12020a515bcf0e75ee4c558a94086e792666662cd422ecb75d6d255bb1b793b793f68257cb496e44f1f15ad10ce90861e1ebd528668bca9ae6d5d661ec3cc34f8de222728dcdad27c2ef5a289dcbb8ee8e27b5be299abef83d2a60a17d3bc44b4f28d9ca515d2dd6cdbbda1daa526ee21dc32891815cf30ef76f5b93ad79bbe9ce204d02dd49cfc1d329c122eeaf30531ae6103f16b9", @generic]}, 0xb8}, 0x1, 0x0, 0x0, 0x840}, 0x24040001) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000280)='./file0\x00') r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x3f00) dup(r5) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file0'}, 0xfffffffffffffcf3) 2.715096653s ago: executing program 2 (id=279): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) r3 = dup(r2) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x2000000000000376, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0xa, 0x4}, 0x36, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x5, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r5 = getpid() sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r7, &(0x7f00000bd000), 0x800005d, 0x4810) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) socket$rxrpc(0x21, 0x2, 0xa) connect$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x803}, 0xe) r8 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_bt_hidp_HIDPCONNADD(r8, 0x400448c8, &(0x7f0000000480)={r4, r4, 0x8, 0x0, 0x0, 0x5, 0x81, 0x46d, 0xfff9, 0x3, 0x0, 0x5, 'syz0\x00'}) shutdown(r4, 0x1) write$UHID_INPUT(r3, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006) sendto$packet(r0, &(0x7f0000000180), 0x0, 0x4000, &(0x7f0000000140)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14) 2.124327024s ago: executing program 1 (id=272): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000140), 0x4, 0x268301) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x8, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007b000000850000004000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = dup(r0) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) syz_io_uring_setup(0x237, &(0x7f0000000540)={0x0, 0x43, 0x10, 0x1, 0x274, 0x0, r2}, &(0x7f0000000080)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd, 0x0, 0x0, 0x0, {}, 0x1}) r6 = userfaultfd(0x801) ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0xc}) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00001b5000/0x2000)=nil, 0x2000}, 0x3}) socket$nl_route(0x10, 0x3, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) poll(&(0x7f0000000000)=[{r6}], 0x1, 0xe2) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000004000000080001000100000000100000", @ANYRES32, @ANYBLOB="0000000000000000009265000000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3240a46705ea3c45, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYRES8=r6, @ANYBLOB="09343b8f7a21c2ed0d6bd6eff867697d4402bd1ede7deaf147a99d38d5aa05180d721330319a649a3b94fa504377ed0cf7066a1739b68cd3fcdfc248375ac66b6653a0070fa7f0a7097ec565f2a14f8afd1112c9c6e5fe90866781080d3031cab08247204d4724a9f9d0b802b6ade59f114caf8decff98f031c370206e733b3133bb455c4c8b3c9a90df3e53f5f7624968a255d82e65ddab63f4cddd83070a1b8c83bf9894b9f8799eefcf017d7faa46ad8eac76353b3363d4be5f335f881a0825401ce1054cc9169588ec2559614c9887d0b9b6aa04dc9a4bbbfcd5c9025608707bdb535aefcd35d1d0be", @ANYRES8=r9, @ANYRESOCT=0x0, @ANYRESOCT=r7, @ANYRES64=r10, @ANYRESHEX=r3], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x5cfc6160, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000009c0)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0xd, 0x0, 0x0, 0x1, 0x0, 0x2}, 0x4c) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x18) r11 = socket$pppl2tp(0x18, 0x1, 0x1) r12 = memfd_create(&(0x7f0000000180)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaaSc\xf3]WhI\xf4\x89\x85!mPl\x90\xa5\x93\x19\f\x9a\xae\xd5a\x9bU5\x1a\x86\x9d)5y\xef\x90\xea5\x81\xfeO;\xd4zh?\xbdW\xe0\x84\xe6\x9d\xcb\xcd\xb6\xad3\x7fWY\x02\xa2\x8baG\x00\x0e\x8e/\xc1\xaf\xd0\xbcH9\x04\x00\x00\x00z\x16\xdf\xf3hLpLaA\x89n]>,^M\x82\x8e\xe40\x97_\x809y)Z\xeb\x9d\xbawv\xe9\xc0\x16\xdc\xf5\xcb\xdb\x96\xd6\xba@\xa7\x1bl\xca\xe0\x1e3\x81\xc6S\x86\xf7\xf0\xba\x1b\x14N\xa2\x04\xdb\xb5X\xe4y\xef\xe8\xdb\xd5r\x11\xfb\xe4v\xef\x06\xbb\x00\x96CR\xe0~5\x16=:A2\x9c\b\xd9\xa0CB\r\xe9\xb8$\xfe\x8d\xb1Gg\xa9\xac<\xbf\x10]\b9\xd9\x89\xaf\xa6\xd1\x10\x1fq\xba\x06_NW\xdb67Xv(\xa8\xce\x1b\xe6\xbd\x947\x8f)8\xe5\xb3\xac;\x7f+\xf67\xea\x1ei\x92w-)\xa1B/M\x0e7:9\xdb~V\xb7\xd5\x13^v\x14\xe6O\xea\x00\x87\x8dkG\xdf%\xebe\x83\xb97\x01| \xb3\xd8W\xe8o\x17\x97\xd9\x14o\x92\xb9\x9a\x8c\xd7\xcf\xa2\x11\xc3\xa5\xb3\xd2\xdeQ\xa7\x05\x7f\x99Lq(\xcd\\\xa2y\x14or\x1efn\xf2\x97\x96c\xda7\t,', 0x4) ftruncate(r12, 0x0) r13 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r11, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r13, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32) close(r13) writev(r11, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x1fffa2}], 0x1) r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) 2.121760207s ago: executing program 0 (id=281): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, 0x0, 0x0) setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) symlinkat(&(0x7f00000000c0)='./file1\x00', r2, &(0x7f0000000100)='./file0\x00') openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0) socket$kcm(0x11, 0x3, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0x0, [{}, {}, {}, {0x1}, {}, {0xfffffffa, 0x6}], 0x0, 0x0, 0x8, 0x0, 0x1}}) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'md5-generic\x00'}, 0x5a) r5 = accept4(r4, 0x0, 0x0, 0x0) write(r5, &(0x7f0000000040)="cb", 0xfffffdef) 1.802223261s ago: executing program 2 (id=273): socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000340)=[{0x0, 0x5, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x7}, {0x4, 0x2, 0x13, 0x2}, {0x0, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', 0x0, 0x208000, 0x0) wait4(r0, 0x0, 0x2, 0x0) creat(&(0x7f00000002c0)='./file0\x00', 0x0) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = syz_io_uring_setup(0x5981, &(0x7f0000000000)={0x0, 0xef34, 0x2, 0x0, 0x325}, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r4, 0x56a1, 0x1dc1, 0x1e, &(0x7f0000000180)={[0x9, 0x100]}, 0x8) r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) socket$inet(0x2, 0x4000000805, 0x0) 1.337319199s ago: executing program 3 (id=274): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="471c6889e7b9394e239e740fe2b6b3d0dfb1dbaf84f77a2ca7af7c83c86ad15c6cd899df35f6ce1770c74671b3dec15cff5e7f23f36dd866ae55651e49abc0f5f3d1012c8e60435b2d71c68642e336d31c12498d77b54983227ca4a4364332c15e8a25c00994bef879051446dc4737b7fb80cd4da9e197cfc73f0ba5d175b58059dae215e7636779eca0911cb1cfc744d4ee0b4bc144a181383fb7111cfba5fc8c52c396ba9b79f0afd7b0318640249252298cdf8840d831bc1b57ec05d0404d4dd8e95f0e4901545b632f53a4bd1f7936a2d84867edd7322753537b845b1b42ab2381a91959", @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x35, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4) shutdown(0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000066c0), 0xa0d, 0x0, 0x0) 850.04161ms ago: executing program 2 (id=275): socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000340)=[{0x0, 0x5, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x7}, {0x4, 0x2, 0x13, 0x2}, {0x0, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', 0x0, 0x208000, 0x0) wait4(r0, 0x0, 0x2, 0x0) creat(&(0x7f00000002c0)='./file0\x00', 0x0) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = syz_io_uring_setup(0x5981, &(0x7f0000000000)={0x0, 0xef34, 0x2, 0x0, 0x325}, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r4, 0x56a1, 0x1dc1, 0x1e, &(0x7f0000000180)={[0x9, 0x100]}, 0x8) r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) socket$inet(0x2, 0x4000000805, 0x0) 848.270043ms ago: executing program 1 (id=285): syz_emit_ethernet(0x3e, &(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0xcc72, 0x0, 0x3}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_ASYNC_CANCEL) io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) chdir(&(0x7f0000000100)='./file0\x00') mkdirat(0xffffffffffffff9c, 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)={0xb8, 0x39, 0x200, 0x70bd25, 0x25dfdbfc, {0x16}, [@typed={0x4, 0xe1}, @generic="d2c5ff46b6498e12020a515bcf0e75ee4c558a94086e792666662cd422ecb75d6d255bb1b793b793f68257cb496e44f1f15ad10ce90861e1ebd528668bca9ae6d5d661ec3cc34f8de222728dcdad27c2ef5a289dcbb8ee8e27b5be299abef83d2a60a17d3bc44b4f28d9ca515d2dd6cdbbda1daa526ee21dc32891815cf30ef76f5b93ad79bbe9ce204d02dd49cfc1d329c122eeaf30531ae6103f16b9", @generic]}, 0xb8}, 0x1, 0x0, 0x0, 0x840}, 0x24040001) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[], 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x3f00) dup(r5) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file0'}, 0xfffffffffffffcf3) 756.558337ms ago: executing program 0 (id=276): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) symlinkat(&(0x7f00000000c0)='./file1\x00', r3, &(0x7f0000000100)='./file0\x00') openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0) socket$kcm(0x11, 0x3, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0x0, [{}, {}, {}, {0x1}, {}, {0xfffffffa, 0x6}], 0x0, 0x0, 0x8, 0x0, 0x1}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'md5-generic\x00'}, 0x5a) r6 = accept4(r5, 0x0, 0x0, 0x0) write(r6, &(0x7f0000000040)="cb", 0xfffffdef) 0s ago: executing program 3 (id=277): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) ioctl$SNDRV_PCM_IOCTL_DRAIN(0xffffffffffffffff, 0x4144, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$inet_udp(0x2, 0x2, 0x0) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7f, 0x0, &(0x7f0000001180)) syz_emit_ethernet(0x85, &(0x7f00000005c0)=ANY=[@ANYBLOB="aaaaaaaaaabbaaaaaaaaaa0a884800000200000f0e0000000000004c21e92a076b5eec8cebb498146fae248666abab0aa3fc763ee544652a2e26fcee1d76c4094c77361527677623fe0c2ba7bfb3d3e558d2e59211a6e3e544e3fd55b3da1a61769f7f92da1a9e11680b285a980e151500c97081723716e83719d68c5ab0ed"], &(0x7f0000000340)={0x1, 0x1, [0xdf5, 0x31f, 0x338, 0x79d]}) socket(0x28, 0x2, 0x1) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}, {0x0, 0xc8, 0x2}}}, 0x7) r2 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1ff, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r2, 0xc2c45513, &(0x7f0000000040)={{0x2, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x2, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}) socket$nl_route(0x10, 0x3, 0x0) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x2, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}}, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffde4, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000500)={r3, 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r5 = io_uring_setup(0x25e, &(0x7f0000000080)) io_uring_register$IORING_UNREGISTER_RING_FDS(r5, 0x1b, &(0x7f0000003900)=[{0x0, 0x700, 0x0, 0x0, 0x0}], 0x1) write$tun(r4, &(0x7f0000000440)=ANY=[@ANYBLOB="00000000ffffffffffffaaaaaaaaaabb08004500452c00000000002f9078ac1e0001e00000010000655800189000"], 0xfdef) socket(0x22, 0x800, 0x0) io_setup(0x3, 0x0) syz_usb_connect(0x5, 0x6a, 0x0, 0x0) r6 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000200), 0xa0201, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r6, 0xc004500a, &(0x7f0000000000)) ioctl$SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f0000000180)=0x6f) write$dsp(r6, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:52307' (ED25519) to the list of known hosts. [ 41.696183][ T5937] cgroup: Unknown subsys name 'net' [ 41.860183][ T5937] cgroup: Unknown subsys name 'cpuset' [ 41.864410][ T5937] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.651546][ T5937] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.384476][ T5961] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.386922][ T5961] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.389448][ T5961] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.392404][ T5961] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.394726][ T5961] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.395487][ T5962] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.397314][ T5961] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.400226][ T5962] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.401737][ T5961] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.404096][ T5962] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.405673][ T5963] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.405827][ T5961] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 45.406036][ T5961] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.409162][ T5965] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.411044][ T5963] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.411547][ T5961] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.413332][ T5965] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.413601][ T5961] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.413814][ T5961] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 45.413919][ T5961] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.414854][ T5297] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 45.418805][ T5965] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 45.419606][ T5297] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.421395][ T5965] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 45.498224][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.500769][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.528541][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.530992][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.533392][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.535784][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.543772][ T83] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.546780][ T83] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.565565][ T5951] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 45.567449][ T83] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.567472][ T83] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.576332][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.581093][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.603783][ T83] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.606189][ T83] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.625058][ T1032] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.631032][ T1032] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.647808][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 45.668901][ T5977] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 45.691368][ T5977] capability: warning: `syz.0.1' uses deprecated v2 capabilities in a way that may be insecure [ 45.859795][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 45.862386][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 45.864913][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 45.867633][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 45.870383][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 45.873097][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 45.875864][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 45.961851][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 45.964565][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 46.060905][ T5989] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input5 [ 47.425089][ T5993] syz.2.6 (5993) used greatest stack depth: 20688 bytes left [ 47.428482][ T5960] Bluetooth: hci0: command tx timeout [ 47.428485][ T5965] Bluetooth: hci1: command tx timeout [ 47.428717][ T5965] Bluetooth: hci2: command tx timeout [ 47.507517][ T5297] Bluetooth: hci3: command tx timeout [ 47.663842][ T40] audit: type=1326 audit(1737710368.716:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6004 comm="syz.3.9" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f00579 code=0x0 [ 47.965650][ T6021] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input6 [ 48.500290][ T6026] Zero length message leads to an empty skb [ 48.848294][ T6041] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input7 [ 49.507477][ T5297] Bluetooth: hci0: command tx timeout [ 49.509296][ T5965] Bluetooth: hci1: command tx timeout [ 49.509324][ T5960] Bluetooth: hci2: command tx timeout [ 49.587513][ T5297] Bluetooth: hci3: command tx timeout [ 50.063259][ T6056] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input8 [ 50.920251][ T6074] 9pnet_virtio: no channels available for device syz [ 51.598064][ T5965] Bluetooth: hci2: command tx timeout [ 51.598215][ T5960] Bluetooth: hci1: command tx timeout [ 51.599807][ T5297] Bluetooth: hci0: command tx timeout [ 51.667533][ T5297] Bluetooth: hci3: command tx timeout [ 52.692442][ T6101] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input9 [ 52.998824][ T6113] pim6reg: entered allmulticast mode [ 53.005852][ T6113] pim6reg: left allmulticast mode [ 53.667601][ T5297] Bluetooth: hci2: command tx timeout [ 53.677489][ T5297] Bluetooth: hci0: command tx timeout [ 53.677513][ T5960] Bluetooth: hci1: command tx timeout [ 53.747514][ T5960] Bluetooth: hci3: command tx timeout [ 53.861035][ T6130] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input10 [ 54.641183][ T6142] tipc: Started in network mode [ 54.642673][ T6142] tipc: Node identity 7, cluster identity 4711 [ 54.644616][ T6142] tipc: Node number set to 7 [ 54.646277][ T6142] tipc: Cannot configure node identity twice [ 54.779338][ T6151] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input11 [ 55.710759][ T6167] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input12 [ 56.268564][ T6182] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input13 [ 56.755551][ T6197] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input14 [ 58.539098][ T6234] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input15 [ 59.353827][ T6246] FAULT_INJECTION: forcing a failure. [ 59.353827][ T6246] name failslab, interval 1, probability 0, space 0, times 1 [ 59.360932][ T6246] CPU: 0 UID: 0 PID: 6246 Comm: syz.3.57 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0 [ 59.360946][ T6246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 59.360951][ T6246] Call Trace: [ 59.360953][ T6246] [ 59.360957][ T6246] dump_stack_lvl+0x16c/0x1f0 [ 59.360971][ T6246] should_fail_ex+0x497/0x5b0 [ 59.360987][ T6246] should_failslab+0xc2/0x120 [ 59.360996][ T6246] __kmalloc_cache_noprof+0x68/0x420 [ 59.361008][ T6246] ? rcu_is_watching+0x12/0xc0 [ 59.361020][ T6246] ? trace_lock_acquire+0x14e/0x1f0 [ 59.361034][ T6246] sctp_add_bind_addr+0x9d/0x3e0 [ 59.361045][ T6246] sctp_copy_local_addr_list+0x39e/0x5a0 [ 59.361059][ T6246] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 59.361071][ T6246] ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360 [ 59.361085][ T6246] ? sctp_bind_addr_copy+0xe0/0x530 [ 59.361094][ T6246] sctp_bind_addr_copy+0xe0/0x530 [ 59.361105][ T6246] sctp_connect_new_asoc+0x1d8/0x790 [ 59.361119][ T6246] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 59.361132][ T6246] ? lock_acquire+0x2f/0xb0 [ 59.361139][ T6246] ? sctp_endpoint_lookup_assoc+0xac/0x2a0 [ 59.361152][ T6246] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 59.361162][ T6246] sctp_sendmsg+0x162a/0x1f10 [ 59.361174][ T6246] ? __pfx___lock_acquire+0x10/0x10 [ 59.361185][ T6246] ? __pfx_sctp_sendmsg+0x10/0x10 [ 59.361204][ T6246] ? __pfx_aa_sk_perm+0x10/0x10 [ 59.361217][ T6246] ? __pfx_sctp_sendmsg+0x10/0x10 [ 59.361230][ T6246] inet_sendmsg+0x119/0x140 [ 59.361244][ T6246] __sys_sendto+0x42a/0x4f0 [ 59.361255][ T6246] ? __pfx___sys_sendto+0x10/0x10 [ 59.361273][ T6246] ? ksys_write+0x1ba/0x250 [ 59.361285][ T6246] ? __pfx_ksys_write+0x10/0x10 [ 59.361298][ T6246] __ia32_sys_sendto+0xdd/0x1b0 [ 59.361306][ T6246] ? lockdep_hardirqs_on+0x7c/0x110 [ 59.361314][ T6246] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 59.361324][ T6246] __do_fast_syscall_32+0x73/0x120 [ 59.361334][ T6246] do_fast_syscall_32+0x32/0x80 [ 59.361343][ T6246] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 59.361355][ T6246] RIP: 0023:0xf7f00579 [ 59.361375][ T6246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 59.361384][ T6246] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171 [ 59.361392][ T6246] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020847fff [ 59.361398][ T6246] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4 [ 59.361402][ T6246] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000 [ 59.361407][ T6246] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 59.361412][ T6246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 59.361424][ T6246] [ 59.485565][ T6250] FAULT_INJECTION: forcing a failure. [ 59.485565][ T6250] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 59.491443][ T6250] CPU: 1 UID: 0 PID: 6250 Comm: syz.2.58 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0 [ 59.491464][ T6250] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 59.491473][ T6250] Call Trace: [ 59.491478][ T6250] [ 59.491484][ T6250] dump_stack_lvl+0x16c/0x1f0 [ 59.491520][ T6250] should_fail_ex+0x497/0x5b0 [ 59.491549][ T6250] _copy_from_iter+0x29b/0x1400 [ 59.491567][ T6250] ? trace_lock_acquire+0x14e/0x1f0 [ 59.491600][ T6250] ? __pfx__copy_from_iter+0x10/0x10 [ 59.491615][ T6250] ? __virt_addr_valid+0x1a4/0x590 [ 59.491641][ T6250] ? __virt_addr_valid+0x5e/0x590 [ 59.491662][ T6250] ? __phys_addr_symbol+0x30/0x80 [ 59.491683][ T6250] ? __check_object_size+0x488/0x710 [ 59.491712][ T6250] hci_sock_sendmsg+0x46d/0x25e0 [ 59.491733][ T6250] ? __pfx_aa_sk_perm+0x10/0x10 [ 59.491752][ T6250] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 59.491778][ T6250] sock_write_iter+0x4fe/0x5b0 [ 59.491807][ T6250] ? __pfx_sock_write_iter+0x10/0x10 [ 59.491840][ T6250] ? rw_verify_area+0xcf/0x680 [ 59.491861][ T6250] vfs_write+0x5ae/0x1150 [ 59.491883][ T6250] ? __pfx_sock_write_iter+0x10/0x10 [ 59.491908][ T6250] ? __pfx_vfs_write+0x10/0x10 [ 59.491930][ T6250] ? __fget_files+0x40/0x3a0 [ 59.491987][ T6250] ksys_write+0x207/0x250 [ 59.492007][ T6250] ? __pfx_ksys_write+0x10/0x10 [ 59.492035][ T6250] __do_fast_syscall_32+0x73/0x120 [ 59.492055][ T6250] do_fast_syscall_32+0x32/0x80 [ 59.492072][ T6250] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 59.492094][ T6250] RIP: 0023:0xf7f21579 [ 59.492108][ T6250] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 59.492123][ T6250] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 59.492138][ T6250] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000000 [ 59.492147][ T6250] RDX: 000000000000000d RSI: 0000000000000000 RDI: 0000000000000000 [ 59.492156][ T6250] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 59.492164][ T6250] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 59.492173][ T6250] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 59.492195][ T6250] [ 59.871572][ T6266] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input16 [ 60.311498][ T6276] 9pnet_virtio: no channels available for device syz [ 60.613895][ T6280] 9pnet_virtio: no channels available for device syz [ 61.183678][ T6296] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input17 [ 61.262211][ T6300] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input18 [ 61.547354][ T6302] tipc: Started in network mode [ 61.549067][ T6302] tipc: Node identity 7, cluster identity 4711 [ 61.551269][ T6302] tipc: Node number set to 7 [ 61.557859][ T6302] tipc: Cannot configure node identity twice [ 63.369077][ T6354] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input19 [ 63.662249][ T6355] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input20 [ 64.358467][ T6377] 9pnet_virtio: no channels available for device syz [ 64.427771][ T6380] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input21 [ 66.260148][ T6421] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input22 [ 68.069337][ T6456] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input23 [ 68.851061][ T6469] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input24 [ 68.983532][ T6481] pim6reg: entered allmulticast mode [ 69.001655][ T6481] pim6reg: left allmulticast mode [ 69.011572][ T40] audit: type=1326 audit(1737710390.066:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6463 comm="syz.0.110" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x0 [ 69.020038][ T6482] 9pnet_virtio: no channels available for device syz [ 69.875762][ T6502] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input25 [ 70.797297][ T6526] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input26 [ 70.818093][ T1410] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.820175][ T1410] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.189907][ T6530] 9pnet_virtio: no channels available for device syz [ 71.715957][ T6544] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input27 [ 72.174945][ T6555] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 72.319054][ T6563] Bluetooth: MGMT ver 1.23 [ 72.324438][ T6563] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma? [ 72.748726][ T6581] FAULT_INJECTION: forcing a failure. [ 72.748726][ T6581] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 72.757243][ T6581] CPU: 1 UID: 0 PID: 6581 Comm: syz.0.131 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0 [ 72.757257][ T6581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 72.757263][ T6581] Call Trace: [ 72.757266][ T6581] [ 72.757270][ T6581] dump_stack_lvl+0x16c/0x1f0 [ 72.757284][ T6581] should_fail_ex+0x497/0x5b0 [ 72.757300][ T6581] _copy_from_user+0x2e/0xd0 [ 72.757310][ T6581] get_compat_msghdr+0xa8/0x170 [ 72.757324][ T6581] ? __pfx_get_compat_msghdr+0x10/0x10 [ 72.757340][ T6581] ___sys_recvmsg+0x193/0x1a0 [ 72.757352][ T6581] ? __pfx____sys_recvmsg+0x10/0x10 [ 72.757374][ T6581] ? __fget_files+0x1fc/0x3a0 [ 72.757390][ T6581] ? trace_lock_acquire+0x14e/0x1f0 [ 72.757409][ T6581] ? __fget_files+0x206/0x3a0 [ 72.757423][ T6581] do_recvmmsg+0x55d/0x740 [ 72.757435][ T6581] ? __pfx_do_recvmmsg+0x10/0x10 [ 72.757446][ T6581] ? vfs_write+0x306/0x1150 [ 72.757465][ T6581] ? __fget_files+0x206/0x3a0 [ 72.757487][ T6581] __sys_recvmmsg+0x21e/0x280 [ 72.757498][ T6581] ? __pfx___sys_recvmmsg+0x10/0x10 [ 72.757510][ T6581] ? __pfx_ksys_write+0x10/0x10 [ 72.757523][ T6581] __ia32_compat_sys_recvmmsg_time32+0xc4/0x160 [ 72.757537][ T6581] ? lockdep_hardirqs_on+0x7c/0x110 [ 72.757546][ T6581] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 72.757556][ T6581] __do_fast_syscall_32+0x73/0x120 [ 72.757566][ T6581] do_fast_syscall_32+0x32/0x80 [ 72.757576][ T6581] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 72.757590][ T6581] RIP: 0023:0xf747e579 [ 72.757598][ T6581] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 72.757607][ T6581] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 72.757616][ T6581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003240 [ 72.757621][ T6581] RDX: 0000000000000001 RSI: 0000000040000101 RDI: 0000000000000000 [ 72.757627][ T6581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 72.757631][ T6581] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 72.757636][ T6581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 72.757647][ T6581] [ 72.770661][ T6583] program syz.3.132 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 72.892522][ T6590] program syz.3.135 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 72.898540][ T6591] netlink: 24 bytes leftover after parsing attributes in process `syz.3.135'. [ 72.999893][ T6598] FAULT_INJECTION: forcing a failure. [ 72.999893][ T6598] name failslab, interval 1, probability 0, space 0, times 0 [ 73.004667][ T6598] CPU: 1 UID: 0 PID: 6598 Comm: syz.3.137 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0 [ 73.004686][ T6598] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 73.004695][ T6598] Call Trace: [ 73.004699][ T6598] [ 73.004705][ T6598] dump_stack_lvl+0x16c/0x1f0 [ 73.004726][ T6598] should_fail_ex+0x497/0x5b0 [ 73.004748][ T6598] ? fs_reclaim_acquire+0xae/0x150 [ 73.004770][ T6598] should_failslab+0xc2/0x120 [ 73.004780][ T6598] __kmalloc_noprof+0xce/0x4f0 [ 73.004802][ T6598] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 73.004817][ T6598] ? tomoyo_realpath_from_path+0xbf/0x710 [ 73.004842][ T6598] tomoyo_realpath_from_path+0xbf/0x710 [ 73.004862][ T6598] ? tomoyo_path_number_perm+0x235/0x5b0 [ 73.004879][ T6598] tomoyo_path_number_perm+0x248/0x5b0 [ 73.004896][ T6598] ? tomoyo_path_number_perm+0x235/0x5b0 [ 73.004914][ T6598] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 73.004947][ T6598] ? __pfx_lock_release+0x10/0x10 [ 73.004955][ T6598] ? trace_lock_acquire+0x14e/0x1f0 [ 73.004968][ T6598] ? lock_acquire+0x2f/0xb0 [ 73.004975][ T6598] ? __fget_files+0x40/0x3a0 [ 73.004988][ T6598] ? __fget_files+0x206/0x3a0 [ 73.005001][ T6598] security_file_ioctl_compat+0x9b/0x240 [ 73.005014][ T6598] __do_compat_sys_ioctl+0x4e/0x2c0 [ 73.005025][ T6598] __do_fast_syscall_32+0x73/0x120 [ 73.005035][ T6598] do_fast_syscall_32+0x32/0x80 [ 73.005044][ T6598] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 73.005057][ T6598] RIP: 0023:0xf7f00579 [ 73.005064][ T6598] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 73.005073][ T6598] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 73.005087][ T6598] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000002201 [ 73.005096][ T6598] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 73.005105][ T6598] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 73.005113][ T6598] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 73.005121][ T6598] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 73.005140][ T6598] [ 73.005145][ T6598] ERROR: Out of memory at tomoyo_realpath_from_path. [ 74.004979][ T40] audit: type=1326 audit(1737710395.056:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6624 comm="syz.1.146" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x0 [ 74.877940][ T6633] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0 [ 77.234878][ T40] audit: type=1326 audit(1737710398.286:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.2.159" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x0 [ 77.792989][ T6693] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input28 [ 78.337489][ T35] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 78.490252][ T35] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 78.493039][ T35] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 78.496279][ T35] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 78.499074][ T35] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 78.503199][ T35] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 78.506600][ T35] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 78.511444][ T35] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 78.514241][ T35] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 78.516795][ T35] usb 7-1: Product: syz [ 78.518136][ T35] usb 7-1: Manufacturer: syz [ 78.523551][ T6701] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 78.527880][ T35] cdc_wdm 7-1:1.0: skipping garbage [ 78.529779][ T35] cdc_wdm 7-1:1.0: skipping garbage [ 78.533472][ T35] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 78.535348][ T35] cdc_wdm 7-1:1.0: Unknown control protocol [ 78.745016][ C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 78.747176][ C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 78.749332][ C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 78.751345][ C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 78.753428][ C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 78.755509][ C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 78.757469][ C2] cdc_wdm 7-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1 [ 78.824404][ T30] usb 7-1: USB disconnect, device number 2 [ 79.548500][ T5960] Bluetooth: Unknown LE signaling command 0x0c [ 79.550423][ T5960] Bluetooth: Wrong link type (-22) [ 79.605158][ T40] audit: type=1326 audit(1737710400.656:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6731 comm="syz.2.174" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x0 [ 80.991154][ T6770] ALSA: mixer_oss: invalid OSS volume '' [ 81.029099][ T62] cfg80211: failed to load regulatory.db [ 81.282927][ T6781] netlink: 24 bytes leftover after parsing attributes in process `syz.3.182'. [ 82.235825][ T40] audit: type=1326 audit(1737710403.276:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6795 comm="syz.3.186" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f00579 code=0x0 [ 82.489671][ T6807] netlink: 12 bytes leftover after parsing attributes in process `syz.1.190'. [ 82.492495][ T6813] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long [ 82.610417][ T6820] 9pnet_virtio: no channels available for device syz [ 82.717442][ T5297] Bluetooth: hci3: command 0x0405 tx timeout [ 83.914716][ T40] audit: type=1326 audit(1737710404.966:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6855 comm="syz.1.203" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x7ffc0000 [ 83.923738][ T40] audit: type=1326 audit(1737710404.966:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6855 comm="syz.1.203" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x7ffc0000 [ 83.932710][ T40] audit: type=1326 audit(1737710404.966:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6855 comm="syz.1.203" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff3579 code=0x7ffc0000 [ 83.939487][ T40] audit: type=1326 audit(1737710404.966:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6855 comm="syz.1.203" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x7ffc0000 [ 83.946226][ T40] audit: type=1326 audit(1737710404.966:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6855 comm="syz.1.203" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x7ffc0000 [ 83.965611][ T40] audit: type=1326 audit(1737710404.966:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6855 comm="syz.1.203" exe="/syz-executor" sig=0 arch=40000003 syscall=65 compat=1 ip=0xf7ff3579 code=0x7ffc0000 [ 83.973243][ T40] audit: type=1326 audit(1737710404.966:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6855 comm="syz.1.203" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x7ffc0000 [ 83.981737][ T40] audit: type=1326 audit(1737710404.966:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6855 comm="syz.1.203" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x7ffc0000 [ 83.990346][ T40] audit: type=1326 audit(1737710404.966:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6855 comm="syz.1.203" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff3579 code=0x7ffc0000 [ 83.999331][ T40] audit: type=1326 audit(1737710404.966:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6855 comm="syz.1.203" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x7ffc0000 [ 84.040258][ T6861] sp0: Synchronizing with TNC [ 84.252464][ T6866] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input29 [ 85.521349][ T6896] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input30 [ 87.421446][ T6941] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input31 [ 88.655696][ T6973] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input32 [ 88.842367][ T6971] syz.0.221 uses obsolete (PF_INET,SOCK_PACKET) [ 89.387643][ T6994] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input33 [ 90.403460][ T7016] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input34 [ 90.739773][ T40] kauditd_printk_skb: 25 callbacks suppressed [ 90.739789][ T40] audit: type=1800 audit(1737710411.796:43): pid=7006 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.231" name="cpuset.effective_cpus" dev="9p" ino=36701713 res=0 errno=0 [ 90.878385][ T7006] syz.2.231 (7006) used greatest stack depth: 20336 bytes left [ 91.973453][ T40] audit: type=1326 audit(1737710413.026:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.2.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7fc00000 [ 91.980769][ T40] audit: type=1326 audit(1737710413.036:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.2.238" exe="/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf7f21579 code=0x7fc00000 [ 92.037549][ T40] audit: type=1326 audit(1737710413.076:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.3.237" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f00579 code=0x0 [ 92.090381][ T40] audit: type=1326 audit(1737710413.136:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.2.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7fc00000 [ 92.096726][ T40] audit: type=1326 audit(1737710413.146:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.2.238" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f21579 code=0x7fc00000 [ 92.104323][ T40] audit: type=1326 audit(1737710413.146:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.2.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7fc00000 [ 92.110523][ T40] audit: type=1326 audit(1737710413.146:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.2.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7fc00000 [ 92.116739][ T40] audit: type=1326 audit(1737710413.146:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.2.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7fc00000 [ 92.123126][ T40] audit: type=1326 audit(1737710413.146:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.2.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7fc00000 [ 92.163829][ T7054] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input35 [ 92.835141][ T7071] sp0: Synchronizing with TNC [ 93.238925][ T7078] random: crng reseeded on system resumption [ 93.730654][ T7089] mmap: syz.1.248 (7089) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 93.796885][ T7093] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'filter' [ 93.974094][ T7101] netlink: 'syz.1.249': attribute type 1 has an invalid length. [ 93.977668][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.1.249'. [ 94.162699][ T7097] netlink: 24 bytes leftover after parsing attributes in process `syz.1.249'. [ 94.171374][ T7101] process 'syz.1.249' launched './file0' with NULL argv: empty string added [ 95.498074][ T7132] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input36 [ 96.055857][ T7141] 9pnet_virtio: no channels available for device syz [ 96.603636][ T7153] sp0: Synchronizing with TNC [ 98.055688][ T7180] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input37 [ 98.163398][ T7184] netlink: 'syz.3.267': attribute type 1 has an invalid length. [ 98.165929][ T7184] netlink: 134728 bytes leftover after parsing attributes in process `syz.3.267'. [ 98.174876][ T7184] netlink: 24 bytes leftover after parsing attributes in process `syz.3.267'. [ 98.533965][ T7194] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input38 [ 99.063494][ T7202] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input39 [ 99.493390][ T7212] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input40 [ 100.291377][ T40] kauditd_printk_skb: 261 callbacks suppressed [ 100.291388][ T40] audit: type=1800 audit(1737710421.346:314): pid=7210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.271" name="cpuset.effective_cpus" dev="9p" ino=36701713 res=0 errno=0 [ 102.005026][ T5297] ================================================================== [ 102.007508][ T5297] BUG: KASAN: null-ptr-deref in l2cap_sock_resume_cb+0xd0/0x130 [ 102.009852][ T5297] Write of size 8 at addr 0000000000000568 by task kworker/u33:1/5297 [ 102.014484][ T5297] [ 102.015226][ T5297] CPU: 1 UID: 0 PID: 5297 Comm: kworker/u33:1 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0 [ 102.015238][ T5297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 102.015245][ T5297] Workqueue: hci3 hci_rx_work [ 102.015260][ T5297] Call Trace: [ 102.015265][ T5297] [ 102.015268][ T5297] dump_stack_lvl+0x116/0x1f0 [ 102.015280][ T5297] kasan_report+0xd9/0x110 [ 102.015298][ T5297] ? l2cap_sock_resume_cb+0xd0/0x130 [ 102.015311][ T5297] ? l2cap_sock_resume_cb+0xd0/0x130 [ 102.015323][ T5297] kasan_check_range+0xef/0x1a0 [ 102.015335][ T5297] l2cap_sock_resume_cb+0xd0/0x130 [ 102.015347][ T5297] l2cap_security_cfm+0x795/0x11d0 [ 102.015359][ T5297] ? __pfx_l2cap_security_cfm+0x10/0x10 [ 102.015369][ T5297] ? mark_held_locks+0x9f/0xe0 [ 102.015380][ T5297] ? kasan_quarantine_put+0x10a/0x240 [ 102.015392][ T5297] ? lockdep_hardirqs_on+0x7c/0x110 [ 102.015402][ T5297] ? kfree+0x14f/0x4b0 [ 102.015413][ T5297] ? __pfx_rfcomm_security_cfm+0x10/0x10 [ 102.015427][ T5297] ? hci_encrypt_cfm+0x202/0x7d0 [ 102.015441][ T5297] ? __pfx_l2cap_security_cfm+0x10/0x10 [ 102.015450][ T5297] hci_encrypt_cfm+0x1f2/0x7d0 [ 102.015463][ T5297] ? __pfx_hci_encrypt_cfm+0x10/0x10 [ 102.015477][ T5297] ? hci_conn_hash_lookup_handle+0x3b/0x330 [ 102.015490][ T5297] hci_encrypt_change_evt+0x3f3/0x1130 [ 102.015499][ T5297] ? __pfx_hci_encrypt_change_evt+0x10/0x10 [ 102.015509][ T5297] ? skb_pull_data+0x166/0x210 [ 102.015520][ T5297] hci_event_packet+0x9eb/0x1190 [ 102.015528][ T5297] ? __pfx_hci_encrypt_change_evt+0x10/0x10 [ 102.015557][ T5297] ? __pfx_hci_event_packet+0x10/0x10 [ 102.015566][ T5297] ? mark_held_locks+0x9f/0xe0 [ 102.015575][ T5297] ? kcov_remote_start+0x3cf/0x6e0 [ 102.015585][ T5297] ? lockdep_hardirqs_on+0x7c/0x110 [ 102.015596][ T5297] hci_rx_work+0x2c5/0x16b0 [ 102.015608][ T5297] ? process_one_work+0x8bb/0x1b30 [ 102.015625][ T5297] process_one_work+0x958/0x1b30 [ 102.015641][ T5297] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 102.015650][ T5297] ? __pfx_process_one_work+0x10/0x10 [ 102.015664][ T5297] ? rcu_is_watching+0x12/0xc0 [ 102.015677][ T5297] ? assign_work+0x1a0/0x250 [ 102.015690][ T5297] worker_thread+0x6c8/0xf00 [ 102.015699][ T5297] ? __kthread_parkme+0x148/0x220 [ 102.015710][ T5297] ? __pfx_worker_thread+0x10/0x10 [ 102.015718][ T5297] kthread+0x3af/0x750 [ 102.015731][ T5297] ? __pfx_kthread+0x10/0x10 [ 102.015743][ T5297] ? lock_acquire+0x2f/0xb0 [ 102.015752][ T5297] ? __pfx_kthread+0x10/0x10 [ 102.015765][ T5297] ret_from_fork+0x45/0x80 [ 102.015774][ T5297] ? __pfx_kthread+0x10/0x10 [ 102.015787][ T5297] ret_from_fork_asm+0x1a/0x30 [ 102.015803][ T5297] [ 102.015806][ T5297] ================================================================== [ 102.098093][ T5297] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 102.100303][ T5297] CPU: 3 UID: 0 PID: 5297 Comm: kworker/u33:1 Not tainted 6.13.0-syzkaller-05154-g8883957b3c9d #0 [ 102.103447][ T5297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 102.106682][ T5297] Workqueue: hci3 hci_rx_work [ 102.108134][ T5297] Call Trace: [ 102.109146][ T5297] [ 102.110045][ T5297] dump_stack_lvl+0x3d/0x1f0 [ 102.111458][ T5297] panic+0x71d/0x800 [ 102.112657][ T5297] ? __pfx_panic+0x10/0x10 [ 102.114004][ T5297] ? irqentry_exit+0x3b/0x90 [ 102.115400][ T5297] ? lockdep_hardirqs_on+0x7c/0x110 [ 102.116974][ T5297] ? preempt_schedule_thunk+0x1a/0x30 [ 102.118601][ T5297] ? preempt_schedule_common+0x44/0xc0 [ 102.120260][ T5297] check_panic_on_warn+0xab/0xb0 [ 102.121757][ T5297] end_report+0x117/0x180 [ 102.123096][ T5297] kasan_report+0xe9/0x110 [ 102.124492][ T5297] ? l2cap_sock_resume_cb+0xd0/0x130 [ 102.126093][ T5297] ? l2cap_sock_resume_cb+0xd0/0x130 [ 102.127705][ T5297] kasan_check_range+0xef/0x1a0 [ 102.129131][ T5297] l2cap_sock_resume_cb+0xd0/0x130 [ 102.131087][ T5297] l2cap_security_cfm+0x795/0x11d0 [ 102.133087][ T5297] ? __pfx_l2cap_security_cfm+0x10/0x10 [ 102.135231][ T5297] ? mark_held_locks+0x9f/0xe0 [ 102.137102][ T5297] ? kasan_quarantine_put+0x10a/0x240 [ 102.139200][ T5297] ? lockdep_hardirqs_on+0x7c/0x110 [ 102.141227][ T5297] ? kfree+0x14f/0x4b0 [ 102.142821][ T5297] ? __pfx_rfcomm_security_cfm+0x10/0x10 [ 102.145007][ T5297] ? hci_encrypt_cfm+0x202/0x7d0 [ 102.146944][ T5297] ? __pfx_l2cap_security_cfm+0x10/0x10 [ 102.149015][ T5297] hci_encrypt_cfm+0x1f2/0x7d0 [ 102.150473][ T5297] ? __pfx_hci_encrypt_cfm+0x10/0x10 [ 102.152078][ T5297] ? hci_conn_hash_lookup_handle+0x3b/0x330 [ 102.153865][ T5297] hci_encrypt_change_evt+0x3f3/0x1130 [ 102.155505][ T5297] ? __pfx_hci_encrypt_change_evt+0x10/0x10 [ 102.157291][ T5297] ? skb_pull_data+0x166/0x210 [ 102.158750][ T5297] hci_event_packet+0x9eb/0x1190 [ 102.160260][ T5297] ? __pfx_hci_encrypt_change_evt+0x10/0x10 [ 102.161936][ T5297] ? __pfx_hci_event_packet+0x10/0x10 [ 102.163513][ T5297] ? mark_held_locks+0x9f/0xe0 [ 102.164966][ T5297] ? kcov_remote_start+0x3cf/0x6e0 [ 102.166509][ T5297] ? lockdep_hardirqs_on+0x7c/0x110 [ 102.168068][ T5297] hci_rx_work+0x2c5/0x16b0 [ 102.169479][ T5297] ? process_one_work+0x8bb/0x1b30 [ 102.171021][ T5297] process_one_work+0x958/0x1b30 [ 102.172524][ T5297] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 102.174222][ T5297] ? __pfx_process_one_work+0x10/0x10 [ 102.175851][ T5297] ? rcu_is_watching+0x12/0xc0 [ 102.177318][ T5297] ? assign_work+0x1a0/0x250 [ 102.178731][ T5297] worker_thread+0x6c8/0xf00 [ 102.180136][ T5297] ? __kthread_parkme+0x148/0x220 [ 102.181667][ T5297] ? __pfx_worker_thread+0x10/0x10 [ 102.183215][ T5297] kthread+0x3af/0x750 [ 102.184464][ T5297] ? __pfx_kthread+0x10/0x10 [ 102.185866][ T5297] ? lock_acquire+0x2f/0xb0 [ 102.187241][ T5297] ? __pfx_kthread+0x10/0x10 [ 102.188690][ T5297] ret_from_fork+0x45/0x80 [ 102.190039][ T5297] ? __pfx_kthread+0x10/0x10 [ 102.191439][ T5297] ret_from_fork_asm+0x1a/0x30 [ 102.192900][ T5297] [ 102.194448][ T5297] Kernel Offset: disabled [ 102.195757][ T5297] Rebooting in 86400 seconds.. VM DIAGNOSIS: 09:20:23 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=ffffea000174f480 RCX=ffffffff81e9068e RDX=ffff888021be4880 RSI=0000000000000000 RDI=0000000000000007 RBP=ffffea000174f480 RSP=ffffc90004fdf7f8 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000003 R12=0000000000000000 R13=0000000000000001 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff819907b2 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002fd15ffc CR3=000000004cd64000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000072 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff851847a5 RDI=ffffffff9aad3540 RBP=ffffffff9aad3500 RSP=ffffc90026c97210 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3030303030307257 R12=0000000000000000 R13=0000000000000072 R14=ffffffff85184740 R15=0000000000000000 RIP=ffffffff851847cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002fa08ffc CR3=0000000025df2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=dffffc0000000000 RBX=ffffc900062576b8 RCX=ffffffff91a20398 RDX=1ffff92000c4aed9 RSI=ffffc90006257f38 RDI=ffffc900062576b8 RBP=ffffc90006257f38 RSP=ffffc90006257608 R8 =ffffffff91a203ce R9 =ffffffff91a2039c R10=ffffc900062576b8 R11=00000000000a258d R12=0000000000000008 R13=ffffc900062576c8 R14=ffffc900062576c0 R15=ffffc90006250000 RIP=ffffffff8148e093 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020c91000 CR3=0000000023026000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 EAX=f69d3890 EBX=ffffffff ECX=00000000 EDX=814a8006 ESI=814a7f6d EDI=ffffffff EBP=f69ca040 ESP=ff833c20 EIP=f71579c1 EFL=00000283 [--S---C] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0023 00000000 ffffffff 00c0fb00 DPL=3 CS32 [-RA] SS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 00000000 ffffffff 00c00000 GS =0063 57802440 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 00000000 ffffffff 00c00000 TR =0040 000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002fbf7ffc CR3=0000000023026000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000