./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3963072798

<...>
Warning: Permanently added '10.128.1.28' (ED25519) to the list of known hosts.
execve("./syz-executor3963072798", ["./syz-executor3963072798"], 0x7ffe8da980a0 /* 10 vars */) = 0
brk(NULL)                               = 0x555576c0e000
brk(0x555576c0ee00)                     = 0x555576c0ee00
arch_prctl(ARCH_SET_FS, 0x555576c0e480) = 0
set_tid_address(0x555576c0e750)         = 5839
set_robust_list(0x555576c0e760, 24)     = 0
rseq(0x555576c0eda0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3963072798", 4096) = 28
getrandom("\x83\x4d\x06\x18\x9b\x0d\x33\xe0", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555576c0ee00
brk(0x555576c2fe00)                     = 0x555576c2fe00
brk(0x555576c30000)                     = 0x555576c30000
mprotect(0x7f5176f51000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7f5176ea63c0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f5176eaee80}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7f5176ea63c0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f5176eaee80}, NULL, 8) = 0
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5840 attached
 <unfinished ...>
[pid  5840] set_robust_list(0x555576c0e760, 24 <unfinished ...>
[pid  5839] <... clone resumed>, child_tidptr=0x555576c0e750) = 5840
[pid  5840] <... set_robust_list resumed>) = 0
[pid  5840] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5840] getppid()                   = 0
[pid  5840] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5840] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5840] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5840] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5840] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5840] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5840] unshare(CLONE_NEWNS)        = 0
[pid  5840] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5840] unshare(CLONE_NEWIPC)       = 0
[pid  5840] unshare(CLONE_NEWCGROUP)    = 0
[pid  5840] unshare(CLONE_NEWUTS)       = 0
[pid  5840] unshare(CLONE_SYSVSEM)      = 0
[pid  5840] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "16777216", 8)     = 8
[pid  5840] close(3)                    = 0
[pid  5840] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "536870912", 9)    = 9
[pid  5840] close(3)                    = 0
[pid  5840] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "1024", 4)         = 4
[pid  5840] close(3)                    = 0
[pid  5840] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "8192", 4)         = 4
[pid  5840] close(3)                    = 0
[pid  5840] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "1024", 4)         = 4
[pid  5840] close(3)                    = 0
[pid  5840] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "1024", 4)         = 4
[pid  5840] close(3)                    = 0
[pid  5840] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5840] close(3)                    = 0
[pid  5840] getpid()                    = 1
[pid  5840] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5840] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5840] unshare(CLONE_NEWNET)       = 0
[pid  5840] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "0 65535", 7)      = 7
[pid  5840] close(3)                    = 0
[pid  5840] openat(AT_FDCWD, "/dev/rfkill", O_RDWR) = 3
[pid  5840] write(3, "\x00\x00\x00\x00\x00\x03\x00\x00", 8) = 8
[pid  5840] close(3)                    = 0
[pid  5840] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5840] sendto(3, [{nlmsg_len=40, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x13\x00\x02\x00\x4d\x41\x43\x38\x30\x32\x31\x31\x5f\x48\x57\x53\x49\x4d\x00\x00"], 40, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 40
[pid  5840] recvfrom(3, [{nlmsg_len=244, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x01\x02\x00\x00\x13\x00\x02\x00\x4d\x41\x43\x38\x30\x32\x31\x31\x5f\x48\x57\x53\x49\x4d\x00\x00\x06\x00\x01\x00\x2d\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x1d\x00\x00\x00\x90\x00\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x0a\x00\x00\x00"...], 4096, 0, NULL, NULL) = 244
[pid  5840] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=40, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5840] sendto(3, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5840] recvfrom(3, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5840] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5840] sendto(3, [{nlmsg_len=36, nlmsg_type=0x2d /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  5840] recvfrom(3, [{nlmsg_len=56, nlmsg_type=NLMSG_ERROR, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, {error=2, msg=[{nlmsg_len=36, nlmsg_type=0x2d /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x00\x00\x00"]}], 4096, 0, NULL, NULL) = 56
[pid  5840] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5840] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan0", ifr_ifindex=11}) = 0
[pid  5840] close(4)                    = 0
[pid  5840] sendto(3, [{nlmsg_len=36, nlmsg_type=0x24 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x06\x00\x00\x00\x08\x00\x03\x00\x0b\x00\x00\x00\x08\x00\x05\x00\x01\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  5840] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=36, nlmsg_type=0x24 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5840] socket(AF_INET, SOCK_DGRAM, IPPROTO_IP) = 4
[pid  5840] ioctl(4, SIOCGIFFLAGS, {ifr_name="wlan0", ifr_flags=IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  5840] ioctl(4, SIOCSIFFLAGS, {ifr_name="wlan0", ifr_flags=IFF_UP|IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  5840] close(4)                    = 0
[pid  5840] sendto(3, [{nlmsg_len=64, nlmsg_type=0x24 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x2b\x00\x00\x00\x08\x00\x03\x00\x0b\x00\x00\x00\x0a\x00\x34\x00\x10\x10\x10\x10\x10\x10\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x0a\x00\x06\x00\x50\x50\x50\x50\x50\x50\x00\x00\x04\x00\x3c\x00"], 64, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 64
[pid  5840] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=64, nlmsg_type=0x24 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5840] sendto(3, [{nlmsg_len=36, nlmsg_type=0x2d /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x01\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[   88.804133][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.812419][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[pid  5840] recvfrom(3, [{nlmsg_len=56, nlmsg_type=NLMSG_ERROR, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, {error=3, msg=[{nlmsg_len=36, nlmsg_type=0x2d /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x04\x00\x00\x00\x04\x00\x0e\x00\x0a\x00\x16\x00\x08\x02\x11\x00\x00\x01\x00\x00"]}], 4096, 0, NULL, NULL) = 56
[pid  5840] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5840] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5840] close(4)                    = 0
[pid  5840] sendto(3, [{nlmsg_len=36, nlmsg_type=0x24 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x01\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
[pid  5840] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=36, nlmsg_type=0x24 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5840] socket(AF_INET, SOCK_DGRAM, IPPROTO_IP) = 4
[pid  5840] ioctl(4, SIOCGIFFLAGS, {ifr_name="wlan1", ifr_flags=IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  5840] ioctl(4, SIOCSIFFLAGS, {ifr_name="wlan1", ifr_flags=IFF_UP|IFF_BROADCAST|IFF_MULTICAST}) = 0
[pid  5840] close(4)                    = 0
[pid  5840] sendto(3, [{nlmsg_len=64, nlmsg_type=0x24 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x2b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x10\x10\x10\x10\x10\x10\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x0a\x00\x06\x00\x50\x50\x50\x50\x50\x50\x00\x00\x04\x00\x3c\x00"], 64, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 64
[pid  5840] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=64, nlmsg_type=0x24 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5840] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5840] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan0", ifr_ifindex=11}) = 0
[pid  5840] close(4)                    = 0
[   88.984547][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.992662][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[pid  5840] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4
[pid  5840] sendto(4, [{nlmsg_len=32, nlmsg_type=0x12 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0b\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5840] recvfrom(4, [{nlmsg_len=1476, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x00\x00\x01\x00\x0b\x00\x00\x00\x43\x10\x01\x00\x00\x00\x00\x00\x0a\x00\x03\x00\x77\x6c\x61\x6e\x30\x00\x00\x00\x08\x00\x0d\x00\xe8\x03\x00\x00\x05\x00\x10\x00\x06\x00\x00\x00\x05\x00\x11\x00\x00\x00\x00\x00\x05\x00\x43\x00\x01\x00\x00\x00\x08\x00\x04\x00\xdc\x05\x00\x00\x08\x00\x32\x00\x00\x01\x00\x00\x08\x00\x33\x00\x00\x09\x00\x00\x08\x00\x1b\x00\x00\x00\x00\x00\x08\x00\x1e\x00\x00\x00\x00\x00"...], 4096, 0, NULL, NULL) = 1476
[pid  5840] close(4)                    = 0
[pid  5840] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5840] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5840] close(4)                    = 0
[pid  5840] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4
[pid  5840] sendto(4, [{nlmsg_len=32, nlmsg_type=0x12 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0c\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5840] recvfrom(4, [{nlmsg_len=1476, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=1}, "\x00\x00\x01\x00\x0c\x00\x00\x00\x43\x10\x01\x00\x00\x00\x00\x00\x0a\x00\x03\x00\x77\x6c\x61\x6e\x31\x00\x00\x00\x08\x00\x0d\x00\xe8\x03\x00\x00\x05\x00\x10\x00\x06\x00\x00\x00\x05\x00\x11\x00\x00\x00\x00\x00\x05\x00\x43\x00\x01\x00\x00\x00\x08\x00\x04\x00\xdc\x05\x00\x00\x08\x00\x32\x00\x00\x01\x00\x00\x08\x00\x33\x00\x00\x09\x00\x00\x08\x00\x1b\x00\x00\x00\x00\x00\x08\x00\x1e\x00\x00\x00\x00\x00"...], 4096, 0, NULL, NULL) = 1476
[pid  5840] close(4)                    = 0
[pid  5840] close(3)                    = 0
[pid  5840] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "100000", 6)       = 6
[pid  5840] close(3)                    = 0
[pid  5840] mkdir("./syz-tmp", 0777)    = 0
[pid  5840] mount("", "./syz-tmp", "tmpfs", 0, NULL) = 0
[pid  5840] mkdir("./syz-tmp/newroot", 0777) = 0
[pid  5840] mkdir("./syz-tmp/newroot/dev", 0700) = 0
[pid  5840] mount("/dev", "./syz-tmp/newroot/dev", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5840] mkdir("./syz-tmp/newroot/proc", 0700) = 0
[pid  5840] mount("syz-proc", "./syz-tmp/newroot/proc", "proc", 0, NULL) = 0
[pid  5840] mkdir("./syz-tmp/newroot/selinux", 0700) = 0
[pid  5840] mount("/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5840] mount("/sys/fs/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5840] mkdir("./syz-tmp/newroot/sys", 0700) = 0
[pid  5840] mount("/sys", "./syz-tmp/newroot/sys", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5840] mount("/sys/kernel/debug", "./syz-tmp/newroot/sys/kernel/debug", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5840] mount("/sys/fs/smackfs", "./syz-tmp/newroot/sys/fs/smackfs", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5840] mount("/proc/sys/fs/binfmt_misc", "./syz-tmp/newroot/proc/sys/fs/binfmt_misc", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5840] mkdir("./syz-tmp/newroot/syz-inputs", 0700) = 0
[pid  5840] mount("/syz-inputs", "./syz-tmp/newroot/syz-inputs", NULL, MS_RDONLY|MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5840] mkdir("./syz-tmp/pivot", 0777) = 0
[pid  5840] pivot_root("./syz-tmp", "./syz-tmp/pivot") = 0
[pid  5840] chdir("/")                  = 0
[pid  5840] umount2("./pivot", MNT_DETACH) = 0
[pid  5840] chroot("./newroot")         = 0
[pid  5840] chdir("/")                  = 0
[pid  5840] mkdir("/dev/gadgetfs", 0777) = 0
[pid  5840] mount("gadgetfs", "/dev/gadgetfs", "gadgetfs", 0, NULL) = 0
[pid  5840] mkdir("/dev/binderfs", 0777) = 0
[pid  5840] mount("binder", "/dev/binderfs", "binder", 0, NULL) = -1 ENODEV (No such device)
[pid  5840] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5840] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5845 attached
, child_tidptr=0x555576c0e750) = 2
[pid  5845] set_robust_list(0x555576c0e760, 24) = 0
[pid  5845] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5845] setpgid(0, 0)               = 0
[pid  5845] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5845] write(3, "1000", 4)         = 4
[pid  5845] close(3)                    = 0
[pid  5845] write(1, "executing program\n", 18executing program
) = 18
[pid  5845] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5845] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5845] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5845] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=2}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5845] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=2}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5845] close(4)                    = 0
[pid  5845] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5845] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5845] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x98\x03\x00\x00\x24\x00\x01\x00\x28\x05\x70\x00\xfc\xdb\xdf\x25\x3b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x04\x00\x8e\x00\x08\x00\x57\x00\x1b\x0a\x00\x00\x04\x00\x6c\x00\x05\x00\x19\x01\x07\x00\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x56\x03\x33\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=920}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_MORE}, 0) = 920
[pid  5845] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5
[pid  5845] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 6
[pid  5845] sendto(6, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5845] recvfrom(6, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=-124429833}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[   89.560356][ T5845] netlink: 4 bytes leftover after parsing attributes in process `syz-executor396'.
[pid  5845] recvfrom(6, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=-124429833}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5845] close(6)                    = 0
[pid  5845] ioctl(5, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5845] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x24\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x02\x00\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5845] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x2c\x00\x00\x00\x24\x00\x05\x00\x29\xbd\x70\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x02\x02\x02\x02\x02\x02\x00\x00\x04\x00\xd0\x00", iov_len=44}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44
[pid  5845] close(3)                    = 0
[pid  5845] close(4)                    = 0
[pid  5845] close(5)                    = 0
[pid  5845] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5845] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5845] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5845] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5845] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5845] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5845] exit_group(0)               = ?
[pid  5845] +++ exited with 0 +++
[pid  5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5840] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5846 attached
, child_tidptr=0x555576c0e750) = 3
[pid  5846] set_robust_list(0x555576c0e760, 24) = 0
[pid  5846] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5846] setpgid(0, 0)               = 0
[pid  5846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5846] write(3, "1000", 4)         = 4
[pid  5846] close(3)                    = 0
[pid  5846] write(1, "executing program\n", 18executing program
) = 18
[pid  5846] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5846] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5846] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5846] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=3}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5846] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=3}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5846] close(4)                    = 0
[pid  5846] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5846] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5846] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x98\x03\x00\x00\x24\x00\x01\x00\x28\x05\x70\x00\xfc\xdb\xdf\x25\x3b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x04\x00\x8e\x00\x08\x00\x57\x00\x1b\x0a\x00\x00\x04\x00\x6c\x00\x05\x00\x19\x01\x07\x00\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x56\x03\x33\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=920}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_MORE}, 0) = 920
[pid  5846] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5
[pid  5846] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 6
[pid  5846] sendto(6, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[   90.090080][ T5846] netlink: 4 bytes leftover after parsing attributes in process `syz-executor396'.
[pid  5846] recvfrom(6, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=-1200700823}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5846] recvfrom(6, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=-1200700823}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5846] close(6)                    = 0
[pid  5846] ioctl(5, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5846] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x24\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x02\x00\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5846] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x2c\x00\x00\x00\x24\x00\x05\x00\x29\xbd\x70\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x02\x02\x02\x02\x02\x02\x00\x00\x04\x00\xd0\x00", iov_len=44}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44
[pid  5846] close(3)                    = 0
[pid  5846] close(4)                    = 0
[pid  5846] close(5)                    = 0
[pid  5846] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5846] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5846] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5846] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5846] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5846] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5846] exit_group(0)               = ?
[pid  5846] +++ exited with 0 +++
[pid  5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[pid  5840] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5847 attached
, child_tidptr=0x555576c0e750) = 4
[pid  5847] set_robust_list(0x555576c0e760, 24) = 0
[pid  5847] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5847] setpgid(0, 0)               = 0
[pid  5847] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5847] write(3, "1000", 4)         = 4
[pid  5847] close(3)                    = 0
executing program
[pid  5847] write(1, "executing program\n", 18) = 18
[pid  5847] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5847] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5847] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5847] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=4}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5847] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=4}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5847] close(4)                    = 0
[pid  5847] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5847] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5847] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x98\x03\x00\x00\x24\x00\x01\x00\x28\x05\x70\x00\xfc\xdb\xdf\x25\x3b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x04\x00\x8e\x00\x08\x00\x57\x00\x1b\x0a\x00\x00\x04\x00\x6c\x00\x05\x00\x19\x01\x07\x00\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x56\x03\x33\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=920}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_MORE}, 0) = 920
[pid  5847] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5
[pid  5847] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 6
[   90.479413][ T5847] netlink: 4 bytes leftover after parsing attributes in process `syz-executor396'.
[pid  5847] sendto(6, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5847] recvfrom(6, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=-1727469476}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5847] recvfrom(6, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=-1727469476}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5847] close(6)                    = 0
[pid  5847] ioctl(5, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5847] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x24\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x02\x00\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5847] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x2c\x00\x00\x00\x24\x00\x05\x00\x29\xbd\x70\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x02\x02\x02\x02\x02\x02\x00\x00\x04\x00\xd0\x00", iov_len=44}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44
[pid  5847] close(3)                    = 0
[pid  5847] close(4)                    = 0
[pid  5847] close(5)                    = 0
[pid  5847] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5847] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5847] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5847] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5847] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5847] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5847] exit_group(0)               = ?
[pid  5847] +++ exited with 0 +++
[pid  5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5840] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5848 attached
, child_tidptr=0x555576c0e750) = 5
[pid  5848] set_robust_list(0x555576c0e760, 24) = 0
[pid  5848] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5848] setpgid(0, 0)               = 0
[pid  5848] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5848] write(3, "1000", 4)         = 4
[pid  5848] close(3)                    = 0
[pid  5848] write(1, "executing program\n", 18executing program
) = 18
[pid  5848] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5848] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5848] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5848] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=5}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5848] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5848] close(4)                    = 0
[pid  5848] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5848] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5848] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x98\x03\x00\x00\x24\x00\x01\x00\x28\x05\x70\x00\xfc\xdb\xdf\x25\x3b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x04\x00\x8e\x00\x08\x00\x57\x00\x1b\x0a\x00\x00\x04\x00\x6c\x00\x05\x00\x19\x01\x07\x00\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x56\x03\x33\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=920}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_MORE}, 0) = 920
[pid  5848] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5
[pid  5848] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 6
[pid  5848] sendto(6, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5848] recvfrom(6, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=-2019998558}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5848] recvfrom(6, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=-2019998558}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5848] close(6)                    = 0
[pid  5848] ioctl(5, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[   90.811912][ T5848] netlink: 4 bytes leftover after parsing attributes in process `syz-executor396'.
[pid  5848] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x24\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x02\x00\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5848] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x2c\x00\x00\x00\x24\x00\x05\x00\x29\xbd\x70\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x02\x02\x02\x02\x02\x02\x00\x00\x04\x00\xd0\x00", iov_len=44}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44
[pid  5848] close(3)                    = 0
[pid  5848] close(4)                    = 0
[pid  5848] close(5)                    = 0
[pid  5848] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5848] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5848] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5848] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5848] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5848] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5848] exit_group(0)               = ?
[pid  5848] +++ exited with 0 +++
[pid  5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5849 attached
, child_tidptr=0x555576c0e750) = 6
[pid  5849] set_robust_list(0x555576c0e760, 24) = 0
[pid  5849] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5849] setpgid(0, 0)               = 0
[pid  5849] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5849] write(3, "1000", 4)         = 4
[pid  5849] close(3)                    = 0
[pid  5849] write(1, "executing program\n", 18executing program
) = 18
[pid  5849] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5849] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5849] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5849] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=6}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5849] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=6}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5849] close(4)                    = 0
[pid  5849] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5849] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5849] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x98\x03\x00\x00\x24\x00\x01\x00\x28\x05\x70\x00\xfc\xdb\xdf\x25\x3b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x04\x00\x8e\x00\x08\x00\x57\x00\x1b\x0a\x00\x00\x04\x00\x6c\x00\x05\x00\x19\x01\x07\x00\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x56\x03\x33\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=920}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_MORE}, 0) = 920
[pid  5849] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5
[pid  5849] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 6
[pid  5849] sendto(6, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[   91.193989][ T5849] netlink: 4 bytes leftover after parsing attributes in process `syz-executor396'.
[pid  5849] recvfrom(6, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=-2440996}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5849] recvfrom(6, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=-2440996}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5849] close(6)                    = 0
[pid  5849] ioctl(5, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5849] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x24\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x02\x00\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5849] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x2c\x00\x00\x00\x24\x00\x05\x00\x29\xbd\x70\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x02\x02\x02\x02\x02\x02\x00\x00\x04\x00\xd0\x00", iov_len=44}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44
[pid  5849] close(3)                    = 0
[pid  5849] close(4)                    = 0
[pid  5849] close(5)                    = 0
[pid  5849] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5849] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5849] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5849] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5849] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5849] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5849] exit_group(0)               = ?
[pid  5849] +++ exited with 0 +++
[pid  5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5850 attached
, child_tidptr=0x555576c0e750) = 7
[pid  5850] set_robust_list(0x555576c0e760, 24) = 0
[pid  5850] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5850] setpgid(0, 0)               = 0
[pid  5850] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5850] write(3, "1000", 4)         = 4
[pid  5850] close(3)                    = 0
[pid  5850] write(1, "executing program\n", 18executing program
) = 18
[pid  5850] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5850] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5850] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5850] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=7}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5850] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=7}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5850] close(4)                    = 0
[pid  5850] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5850] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5850] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x98\x03\x00\x00\x24\x00\x01\x00\x28\x05\x70\x00\xfc\xdb\xdf\x25\x3b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x04\x00\x8e\x00\x08\x00\x57\x00\x1b\x0a\x00\x00\x04\x00\x6c\x00\x05\x00\x19\x01\x07\x00\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x56\x03\x33\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=920}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_MORE}, 0) = 920
[pid  5850] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5
[pid  5850] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 6
[pid  5850] sendto(6, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[   91.690547][ T5850] netlink: 4 bytes leftover after parsing attributes in process `syz-executor396'.
[pid  5850] recvfrom(6, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=-445045011}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5850] recvfrom(6, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=-445045011}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5850] close(6)                    = 0
[pid  5850] ioctl(5, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5850] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x24\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x02\x00\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5850] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x2c\x00\x00\x00\x24\x00\x05\x00\x29\xbd\x70\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x02\x02\x02\x02\x02\x02\x00\x00\x04\x00\xd0\x00", iov_len=44}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44
[pid  5850] close(3)                    = 0
[pid  5850] close(4)                    = 0
[pid  5850] close(5)                    = 0
[pid  5850] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5850] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5850] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5850] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5850] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5850] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5850] exit_group(0)               = ?
[pid  5850] +++ exited with 0 +++
[pid  5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5840] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5852 attached
, child_tidptr=0x555576c0e750) = 8
[pid  5852] set_robust_list(0x555576c0e760, 24) = 0
[pid  5852] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[   92.008664][    T9] cfg80211: failed to load regulatory.db
[pid  5852] setpgid(0, 0)               = 0
[pid  5852] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5852] write(3, "1000", 4)         = 4
[pid  5852] close(3)                    = 0
[pid  5852] write(1, "executing program\n", 18executing program
) = 18
[pid  5852] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5852] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5852] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5852] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=8}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5852] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=8}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5852] close(4)                    = 0
[pid  5852] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5852] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5852] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x98\x03\x00\x00\x24\x00\x01\x00\x28\x05\x70\x00\xfc\xdb\xdf\x25\x3b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x04\x00\x8e\x00\x08\x00\x57\x00\x1b\x0a\x00\x00\x04\x00\x6c\x00\x05\x00\x19\x01\x07\x00\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x56\x03\x33\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=920}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_MORE}, 0) = 920
[pid  5852] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5
[pid  5852] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 6
[pid  5852] sendto(6, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[   92.169007][ T5852] netlink: 4 bytes leftover after parsing attributes in process `syz-executor396'.
[pid  5852] recvfrom(6, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=-1246124695}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5852] recvfrom(6, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=-1246124695}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5852] close(6)                    = 0
[pid  5852] ioctl(5, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5852] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x24\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x02\x00\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5852] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x2c\x00\x00\x00\x24\x00\x05\x00\x29\xbd\x70\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x02\x02\x02\x02\x02\x02\x00\x00\x04\x00\xd0\x00", iov_len=44}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44
[pid  5852] close(3)                    = 0
[pid  5852] close(4)                    = 0
[pid  5852] close(5)                    = 0
[pid  5852] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5852] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5852] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5852] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5852] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5852] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5852] exit_group(0)               = ?
[pid  5852] +++ exited with 0 +++
[pid  5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=8, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5853 attached
, child_tidptr=0x555576c0e750) = 9
[pid  5853] set_robust_list(0x555576c0e760, 24) = 0
[pid  5853] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5853] setpgid(0, 0)               = 0
[pid  5853] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5853] write(3, "1000", 4)         = 4
[pid  5853] close(3)                    = 0
executing program
[pid  5853] write(1, "executing program\n", 18) = 18
[pid  5853] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5853] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5853] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5853] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=9}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5853] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=9}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5853] close(4)                    = 0
[pid  5853] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5853] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5853] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x98\x03\x00\x00\x24\x00\x01\x00\x28\x05\x70\x00\xfc\xdb\xdf\x25\x3b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x04\x00\x8e\x00\x08\x00\x57\x00\x1b\x0a\x00\x00\x04\x00\x6c\x00\x05\x00\x19\x01\x07\x00\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x56\x03\x33\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=920}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_MORE}, 0) = 920
[pid  5853] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5
[pid  5853] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 6
[pid  5853] sendto(6, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5853] recvfrom(6, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=-656077298}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5853] recvfrom(6, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=-656077298}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5853] close(6)                    = 0
[pid  5853] ioctl(5, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[   92.622734][ T5853] netlink: 4 bytes leftover after parsing attributes in process `syz-executor396'.
[pid  5853] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x24\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x02\x00\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5853] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x2c\x00\x00\x00\x24\x00\x05\x00\x29\xbd\x70\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x02\x02\x02\x02\x02\x02\x00\x00\x04\x00\xd0\x00", iov_len=44}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44
[pid  5853] close(3)                    = 0
[pid  5853] close(4)                    = 0
[pid  5853] close(5)                    = 0
[pid  5853] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5853] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5853] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5853] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5853] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5853] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5853] exit_group(0)               = ?
[pid  5853] +++ exited with 0 +++
[pid  5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=9, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5840] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5854 attached
, child_tidptr=0x555576c0e750) = 10
[pid  5854] set_robust_list(0x555576c0e760, 24) = 0
[pid  5854] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5854] setpgid(0, 0)               = 0
[pid  5854] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5854] write(3, "1000", 4)         = 4
[pid  5854] close(3)                    = 0
executing program
[pid  5854] write(1, "executing program\n", 18) = 18
[pid  5854] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5854] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5854] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5854] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=10}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5854] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=10}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5854] close(4)                    = 0
[pid  5854] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5854] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5854] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x98\x03\x00\x00\x24\x00\x01\x00\x28\x05\x70\x00\xfc\xdb\xdf\x25\x3b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x04\x00\x8e\x00\x08\x00\x57\x00\x1b\x0a\x00\x00\x04\x00\x6c\x00\x05\x00\x19\x01\x07\x00\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x56\x03\x33\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=920}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_MORE}, 0) = 920
[pid  5854] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5
[pid  5854] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 6
[pid  5854] sendto(6, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5854] recvfrom(6, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=-902221782}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5854] recvfrom(6, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=-902221782}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5854] close(6)                    = 0
[pid  5854] ioctl(5, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[   93.089610][ T5854] netlink: 4 bytes leftover after parsing attributes in process `syz-executor396'.
[pid  5854] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x24\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x02\x00\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5854] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x2c\x00\x00\x00\x24\x00\x05\x00\x29\xbd\x70\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x02\x02\x02\x02\x02\x02\x00\x00\x04\x00\xd0\x00", iov_len=44}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44
[pid  5854] close(3)                    = 0
[pid  5854] close(4)                    = 0
[pid  5854] close(5)                    = 0
[pid  5854] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5854] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5854] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5854] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5854] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5854] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5854] exit_group(0)               = ?
[pid  5854] +++ exited with 0 +++
[pid  5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=10, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5855 attached
, child_tidptr=0x555576c0e750) = 11
[pid  5855] set_robust_list(0x555576c0e760, 24) = 0
[pid  5855] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5855] setpgid(0, 0)               = 0
[pid  5855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5855] write(3, "1000", 4)         = 4
[pid  5855] close(3)                    = 0
[pid  5855] write(1, "executing program\n", 18executing program
) = 18
[pid  5855] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5855] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5855] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5855] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=11}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5855] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=11}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5855] close(4)                    = 0
[pid  5855] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5855] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5855] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x98\x03\x00\x00\x24\x00\x01\x00\x28\x05\x70\x00\xfc\xdb\xdf\x25\x3b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x04\x00\x8e\x00\x08\x00\x57\x00\x1b\x0a\x00\x00\x04\x00\x6c\x00\x05\x00\x19\x01\x07\x00\x00\x00\x08\x00\x26\x00\x6c\x09\x00\x00\x56\x03\x33\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=920}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_MORE}, 0) = 920
[pid  5855] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5
[pid  5855] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 6
[pid  5855] sendto(6, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[   93.485916][ T5855] netlink: 4 bytes leftover after parsing attributes in process `syz-executor396'.
[pid  5855] recvfrom(6, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=-540116990}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5855] recvfrom(6, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=-540116990}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5855] close(6)                    = 0
[pid  5855] ioctl(5, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[pid  5855] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x24\x00\x00\x00\x24\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x08\x00\x05\x00\x02\x00\x00\x00", iov_len=36}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
[pid  5855] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x2c\x00\x00\x00\x24\x00\x05\x00\x29\xbd\x70\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x0a\x00\x34\x00\x02\x02\x02\x02\x02\x02\x00\x00\x04\x00\xd0\x00", iov_len=44}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44
[pid  5855] close(3)                    = 0
[pid  5855] close(4)                    = 0
[pid  5855] close(5)                    = 0
[pid  5855] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5855] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5855] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5855] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5855] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5855] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5855] exit_group(0)               = ?
[pid  5855] +++ exited with 0 +++
[pid  5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=11, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[pid  5840] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576c0e750) = 12
./strace-static-x86_64: Process 5856 attached
[pid  5856] set_robust_list(0x555576c0e760, 24) = 0
[pid  5856] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5856] setpgid(0, 0)               = 0
[pid  5856] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5856] write(3, "1000", 4)         = 4
[pid  5856] close(3)                    = 0
executing program
[pid  5856] write(1, "executing program\n", 18) = 18
[pid  5856] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3
[pid  5856] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
[pid  5856] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32
[pid  5856] recvfrom(4, [{nlmsg_len=2556, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=12}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x31\x00\x06\x00\x01\x00\x24\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x51\x01\x00\x00\x28\x09\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x1a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 2556
[pid  5856] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=12}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[   93.899090][  T192] ------------[ cut here ]------------
[   93.904610][  T192] WARNING: CPU: 1 PID: 192 at net/mac80211/offchannel.c:404 ieee80211_start_next_roc+0x1e3/0x250
[   93.915250][  T192] Modules linked in:
[   93.919363][  T192] CPU: 1 UID: 0 PID: 192 Comm: kworker/u8:5 Not tainted 6.15.0-rc2-syzkaller-00273-gc03a49f3093a #0 PREEMPT(full) 
[   93.931552][  T192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   93.941692][  T192] Workqueue: events_unbound cfg80211_wiphy_work
[pid  5856] close(4)                    = 0
[pid  5856] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 4
[pid  5856] ioctl(4, SIOCGIFINDEX, {ifr_name="wlan1", ifr_ifindex=12}) = 0
[   93.948048][  T192] RIP: 0010:ieee80211_start_next_roc+0x1e3/0x250
[   93.954438][  T192] Code: f6 48 89 df 4c 89 f6 48 89 c2 5b 41 5c 41 5e 41 5f e9 f1 78 da ff e8 2c 18 2b f6 90 0f 0b 90 e9 b5 fe ff ff e8 1e 18 2b f6 90 <0f> 0b 90 e9 fc fe ff ff 48 c7 c1 60 14 60 90 80 e1 07 80 c1 03 38
[   93.975103][  T192] RSP: 0018:ffffc90002f578f8 EFLAGS: 00010293
[   93.981962][  T192] RAX: ffffffff8b97a2a2 RBX: 0000000000000001 RCX: ffff888020bd5a00
[   93.990050][  T192] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[   93.998085][  T192] RBP: ffffc90002f57ac0 R08: ffffffff8b97a1ec R09: 1ffffffff20bfcae
[   94.006263][  T192] R10: dffffc0000000000 R11: fffffbfff20bfcaf R12: dffffc0000000000
[   94.014392][  T192] R13: ffffffff93686020 R14: ffff888067da8e40 R15: ffff8880338f39a0
[   94.022454][  T192] FS:  0000000000000000(0000) GS:ffff88812509a000(0000) knlGS:0000000000000000
[   94.031696][  T192] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   94.038377][  T192] CR2: 0000555576c0e750 CR3: 0000000078de8000 CR4: 00000000003526f0
[   94.046365][  T192] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   94.054441][  T192] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   94.062880][  T192] Call Trace:
[   94.066310][  T192]  <TASK>
[   94.069500][  T192]  ieee80211_scan_work+0x1d6/0x1dd0
[   94.074802][  T192]  ? __pfx_ieee80211_scan_work+0x10/0x10
[   94.080536][  T192]  ? rcu_is_watching+0x15/0xb0
[   94.085425][  T192]  cfg80211_wiphy_work+0x2f0/0x490
[   94.092175][  T192]  ? process_scheduled_works+0x9cb/0x18e0
[   94.098144][  T192]  process_scheduled_works+0xac3/0x18e0
[   94.103884][  T192]  ? __pfx_process_scheduled_works+0x10/0x10
[   94.109978][  T192]  ? assign_work+0x367/0x3d0
[   94.114755][  T192]  worker_thread+0x870/0xd50
[   94.119429][  T192]  ? __kthread_parkme+0x1a8/0x200
[   94.124499][  T192]  ? __pfx_worker_thread+0x10/0x10
[   94.129689][  T192]  kthread+0x7b7/0x940
[   94.133895][  T192]  ? __pfx_worker_thread+0x10/0x10
[   94.139082][  T192]  ? __pfx_kthread+0x10/0x10
[   94.143723][  T192]  ? __pfx_kthread+0x10/0x10
[   94.148628][  T192]  ? __pfx_kthread+0x10/0x10
[   94.153280][  T192]  ? __pfx_kthread+0x10/0x10
[   94.157950][  T192]  ? _raw_spin_unlock_irq+0x23/0x50
[   94.163199][  T192]  ? lockdep_hardirqs_on+0x9d/0x150
[   94.168677][  T192]  ? __pfx_kthread+0x10/0x10
[   94.173345][  T192]  ret_from_fork+0x4b/0x80
[   94.178346][  T192]  ? __pfx_kthread+0x10/0x10
[   94.182973][  T192]  ret_from_fork_asm+0x1a/0x30
[   94.187827][  T192]  </TASK>
[   94.190885][  T192] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   94.198195][  T192] CPU: 1 UID: 0 PID: 192 Comm: kworker/u8:5 Not tainted 6.15.0-rc2-syzkaller-00273-gc03a49f3093a #0 PREEMPT(full) 
[   94.210799][  T192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   94.220899][  T192] Workqueue: events_unbound cfg80211_wiphy_work
[   94.227263][  T192] Call Trace:
[   94.230599][  T192]  <TASK>
[   94.233546][  T192]  dump_stack_lvl+0x241/0x360
[   94.238254][  T192]  ? __pfx_dump_stack_lvl+0x10/0x10
[   94.243484][  T192]  ? __pfx__printk+0x10/0x10
[   94.248133][  T192]  ? vscnprintf+0x5d/0x90
[   94.252513][  T192]  panic+0x349/0x880
[   94.256553][  T192]  ? __warn+0x174/0x4d0
[   94.260745][  T192]  ? __pfx_panic+0x10/0x10
[   94.265189][  T192]  ? ret_from_fork_asm+0x1a/0x30
[   94.270176][  T192]  __warn+0x344/0x4d0
[   94.274230][  T192]  ? ieee80211_start_next_roc+0x1e3/0x250
[   94.279984][  T192]  report_bug+0x2b3/0x500
[   94.284338][  T192]  ? ieee80211_start_next_roc+0x1e3/0x250
[   94.290099][  T192]  ? ieee80211_start_next_roc+0x1e3/0x250
[   94.295873][  T192]  ? ieee80211_start_next_roc+0x1e5/0x250
[   94.301622][  T192]  handle_bug+0x89/0x170
[   94.306415][  T192]  exc_invalid_op+0x1a/0x50
[   94.310977][  T192]  asm_exc_invalid_op+0x1a/0x20
[   94.315867][  T192] RIP: 0010:ieee80211_start_next_roc+0x1e3/0x250
[   94.322255][  T192] Code: f6 48 89 df 4c 89 f6 48 89 c2 5b 41 5c 41 5e 41 5f e9 f1 78 da ff e8 2c 18 2b f6 90 0f 0b 90 e9 b5 fe ff ff e8 1e 18 2b f6 90 <0f> 0b 90 e9 fc fe ff ff 48 c7 c1 60 14 60 90 80 e1 07 80 c1 03 38
[   94.341901][  T192] RSP: 0018:ffffc90002f578f8 EFLAGS: 00010293
[   94.348064][  T192] RAX: ffffffff8b97a2a2 RBX: 0000000000000001 RCX: ffff888020bd5a00
[   94.356084][  T192] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[   94.364104][  T192] RBP: ffffc90002f57ac0 R08: ffffffff8b97a1ec R09: 1ffffffff20bfcae
[   94.372108][  T192] R10: dffffc0000000000 R11: fffffbfff20bfcaf R12: dffffc0000000000
[   94.380108][  T192] R13: ffffffff93686020 R14: ffff888067da8e40 R15: ffff8880338f39a0
[   94.388104][  T192]  ? ieee80211_start_next_roc+0x12c/0x250
[   94.393843][  T192]  ? ieee80211_start_next_roc+0x1e2/0x250
[   94.399584][  T192]  ? ieee80211_start_next_roc+0x1e2/0x250
[   94.405321][  T192]  ieee80211_scan_work+0x1d6/0x1dd0
[   94.410552][  T192]  ? __pfx_ieee80211_scan_work+0x10/0x10
[   94.416198][  T192]  ? rcu_is_watching+0x15/0xb0
[   94.421015][  T192]  cfg80211_wiphy_work+0x2f0/0x490
[   94.426146][  T192]  ? process_scheduled_works+0x9cb/0x18e0
[   94.431886][  T192]  process_scheduled_works+0xac3/0x18e0
[   94.437473][  T192]  ? __pfx_process_scheduled_works+0x10/0x10
[   94.443526][  T192]  ? assign_work+0x367/0x3d0
[   94.448157][  T192]  worker_thread+0x870/0xd50
[   94.452787][  T192]  ? __kthread_parkme+0x1a8/0x200
[   94.457831][  T192]  ? __pfx_worker_thread+0x10/0x10
[   94.462958][  T192]  kthread+0x7b7/0x940
[   94.467045][  T192]  ? __pfx_worker_thread+0x10/0x10
[   94.472188][  T192]  ? __pfx_kthread+0x10/0x10
[   94.476797][  T192]  ? __pfx_kthread+0x10/0x10
[   94.481399][  T192]  ? __pfx_kthread+0x10/0x10
[   94.485998][  T192]  ? __pfx_kthread+0x10/0x10
[   94.490624][  T192]  ? _raw_spin_unlock_irq+0x23/0x50
[   94.495839][  T192]  ? lockdep_hardirqs_on+0x9d/0x150
[   94.501048][  T192]  ? __pfx_kthread+0x10/0x10
[   94.505649][  T192]  ret_from_fork+0x4b/0x80
[   94.510074][  T192]  ? __pfx_kthread+0x10/0x10
[   94.514674][  T192]  ret_from_fork_asm+0x1a/0x30
[   94.519458][  T192]  </TASK>
[   94.522756][  T192] Kernel Offset: disabled
[   94.527091][  T192] Rebooting in 86400 seconds..