Debian GNU/Linux 11 syzkaller ttyS0

Warning: Permanently added '[localhost]:45693' (ECDSA) to the list of known hosts.
2026/01/16 15:38:11 fuzzer started
2026/01/16 15:38:11 dialing manager at localhost:42157
syzkaller login: [   44.219339] cgroup: Unknown subsys name 'net'
[   44.281570] cgroup: Unknown subsys name 'cpuset'
[   44.293451] cgroup: Unknown subsys name 'rlimit'
2026/01/16 15:38:20 syscalls: 2214
2026/01/16 15:38:20 code coverage: enabled
2026/01/16 15:38:20 comparison tracing: enabled
2026/01/16 15:38:20 extra coverage: enabled
2026/01/16 15:38:20 setuid sandbox: enabled
2026/01/16 15:38:20 namespace sandbox: enabled
2026/01/16 15:38:20 Android sandbox: enabled
2026/01/16 15:38:20 fault injection: enabled
2026/01/16 15:38:20 leak checking: enabled
2026/01/16 15:38:20 net packet injection: enabled
2026/01/16 15:38:20 net device setup: enabled
2026/01/16 15:38:20 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2026/01/16 15:38:20 devlink PCI setup: PCI device 0000:00:10.0 is not available
2026/01/16 15:38:20 USB emulation: enabled
2026/01/16 15:38:20 hci packet injection: enabled
2026/01/16 15:38:20 wifi device emulation: enabled
2026/01/16 15:38:20 802.15.4 emulation: enabled
2026/01/16 15:38:20 fetching corpus: 0, signal 0/2000 (executing program)
2026/01/16 15:38:20 fetching corpus: 48, signal 28274/31776 (executing program)
2026/01/16 15:38:21 fetching corpus: 98, signal 41411/46354 (executing program)
2026/01/16 15:38:21 fetching corpus: 148, signal 47772/54116 (executing program)
2026/01/16 15:38:21 fetching corpus: 198, signal 54931/62599 (executing program)
2026/01/16 15:38:21 fetching corpus: 248, signal 60001/68960 (executing program)
2026/01/16 15:38:21 fetching corpus: 298, signal 64398/74611 (executing program)
2026/01/16 15:38:21 fetching corpus: 347, signal 67749/79180 (executing program)
2026/01/16 15:38:21 fetching corpus: 397, signal 72858/85366 (executing program)
2026/01/16 15:38:22 fetching corpus: 447, signal 77032/90629 (executing program)
2026/01/16 15:38:22 fetching corpus: 497, signal 82643/97044 (executing program)
2026/01/16 15:38:22 fetching corpus: 547, signal 86689/101979 (executing program)
2026/01/16 15:38:22 fetching corpus: 596, signal 89903/106093 (executing program)
2026/01/16 15:38:22 fetching corpus: 646, signal 93258/110351 (executing program)
2026/01/16 15:38:22 fetching corpus: 696, signal 95462/113513 (executing program)
2026/01/16 15:38:22 fetching corpus: 746, signal 98050/116988 (executing program)
2026/01/16 15:38:22 fetching corpus: 796, signal 100789/120517 (executing program)
2026/01/16 15:38:22 fetching corpus: 846, signal 102780/123347 (executing program)
2026/01/16 15:38:23 fetching corpus: 896, signal 105203/126569 (executing program)
2026/01/16 15:38:23 fetching corpus: 946, signal 107503/129605 (executing program)
2026/01/16 15:38:23 fetching corpus: 995, signal 109619/132486 (executing program)
2026/01/16 15:38:23 fetching corpus: 1045, signal 111923/135408 (executing program)
2026/01/16 15:38:23 fetching corpus: 1095, signal 113808/138059 (executing program)
2026/01/16 15:38:23 fetching corpus: 1144, signal 115684/140630 (executing program)
2026/01/16 15:38:23 fetching corpus: 1194, signal 117771/143299 (executing program)
2026/01/16 15:38:23 fetching corpus: 1243, signal 120042/146078 (executing program)
2026/01/16 15:38:23 fetching corpus: 1292, signal 121300/148071 (executing program)
2026/01/16 15:38:24 fetching corpus: 1342, signal 123445/150727 (executing program)
2026/01/16 15:38:24 fetching corpus: 1392, signal 125045/152927 (executing program)
2026/01/16 15:38:24 fetching corpus: 1440, signal 126318/154830 (executing program)
2026/01/16 15:38:24 fetching corpus: 1490, signal 127835/156895 (executing program)
2026/01/16 15:38:24 fetching corpus: 1540, signal 128985/158679 (executing program)
2026/01/16 15:38:24 fetching corpus: 1590, signal 130502/160709 (executing program)
2026/01/16 15:38:24 fetching corpus: 1640, signal 131559/162379 (executing program)
2026/01/16 15:38:24 fetching corpus: 1690, signal 133184/164458 (executing program)
2026/01/16 15:38:25 fetching corpus: 1740, signal 134709/166423 (executing program)
2026/01/16 15:38:25 fetching corpus: 1790, signal 136519/168557 (executing program)
2026/01/16 15:38:25 fetching corpus: 1840, signal 137413/170104 (executing program)
2026/01/16 15:38:25 fetching corpus: 1888, signal 138666/171817 (executing program)
2026/01/16 15:38:25 fetching corpus: 1938, signal 139488/173208 (executing program)
2026/01/16 15:38:25 fetching corpus: 1987, signal 140181/174546 (executing program)
2026/01/16 15:38:25 fetching corpus: 2036, signal 141599/176268 (executing program)
2026/01/16 15:38:25 fetching corpus: 2086, signal 142395/177596 (executing program)
2026/01/16 15:38:25 fetching corpus: 2136, signal 143385/179023 (executing program)
2026/01/16 15:38:26 fetching corpus: 2185, signal 144158/180324 (executing program)
2026/01/16 15:38:26 fetching corpus: 2234, signal 144946/181652 (executing program)
2026/01/16 15:38:26 fetching corpus: 2284, signal 145832/183007 (executing program)
2026/01/16 15:38:26 fetching corpus: 2334, signal 146537/184241 (executing program)
2026/01/16 15:38:26 fetching corpus: 2384, signal 147272/185438 (executing program)
2026/01/16 15:38:26 fetching corpus: 2434, signal 148257/186819 (executing program)
2026/01/16 15:38:26 fetching corpus: 2484, signal 149244/188193 (executing program)
2026/01/16 15:38:26 fetching corpus: 2534, signal 150469/189684 (executing program)
2026/01/16 15:38:26 fetching corpus: 2584, signal 151422/190975 (executing program)
2026/01/16 15:38:27 fetching corpus: 2633, signal 151953/191996 (executing program)
2026/01/16 15:38:27 fetching corpus: 2683, signal 152852/193197 (executing program)
2026/01/16 15:38:27 fetching corpus: 2733, signal 153564/194308 (executing program)
2026/01/16 15:38:27 fetching corpus: 2783, signal 154382/195470 (executing program)
2026/01/16 15:38:27 fetching corpus: 2833, signal 155854/196929 (executing program)
2026/01/16 15:38:27 fetching corpus: 2883, signal 156611/198060 (executing program)
2026/01/16 15:38:27 fetching corpus: 2933, signal 157301/199114 (executing program)
2026/01/16 15:38:27 fetching corpus: 2982, signal 157847/200072 (executing program)
2026/01/16 15:38:28 fetching corpus: 3030, signal 158457/201111 (executing program)
2026/01/16 15:38:28 fetching corpus: 3080, signal 159114/202148 (executing program)
2026/01/16 15:38:28 fetching corpus: 3130, signal 159672/203102 (executing program)
2026/01/16 15:38:28 fetching corpus: 3180, signal 160281/203978 (executing program)
2026/01/16 15:38:28 fetching corpus: 3230, signal 160957/204949 (executing program)
2026/01/16 15:38:28 fetching corpus: 3280, signal 161738/205967 (executing program)
2026/01/16 15:38:28 fetching corpus: 3330, signal 162395/206929 (executing program)
2026/01/16 15:38:28 fetching corpus: 3380, signal 162937/207853 (executing program)
2026/01/16 15:38:29 fetching corpus: 3430, signal 163982/208927 (executing program)
2026/01/16 15:38:29 fetching corpus: 3480, signal 164568/209779 (executing program)
2026/01/16 15:38:29 fetching corpus: 3530, signal 165158/210602 (executing program)
2026/01/16 15:38:29 fetching corpus: 3580, signal 165623/211399 (executing program)
2026/01/16 15:38:29 fetching corpus: 3630, signal 166249/212207 (executing program)
2026/01/16 15:38:29 fetching corpus: 3680, signal 166779/213004 (executing program)
2026/01/16 15:38:29 fetching corpus: 3729, signal 167398/213870 (executing program)
2026/01/16 15:38:29 fetching corpus: 3778, signal 168179/214783 (executing program)
2026/01/16 15:38:29 fetching corpus: 3828, signal 168844/215629 (executing program)
2026/01/16 15:38:30 fetching corpus: 3878, signal 169328/216418 (executing program)
2026/01/16 15:38:30 fetching corpus: 3927, signal 169988/217254 (executing program)
2026/01/16 15:38:30 fetching corpus: 3975, signal 170471/217977 (executing program)
2026/01/16 15:38:30 fetching corpus: 4025, signal 171060/218774 (executing program)
2026/01/16 15:38:30 fetching corpus: 4075, signal 171787/219576 (executing program)
2026/01/16 15:38:30 fetching corpus: 4123, signal 172785/220461 (executing program)
2026/01/16 15:38:30 fetching corpus: 4173, signal 173187/221127 (executing program)
2026/01/16 15:38:30 fetching corpus: 4223, signal 173764/221862 (executing program)
2026/01/16 15:38:31 fetching corpus: 4272, signal 174685/222663 (executing program)
2026/01/16 15:38:31 fetching corpus: 4322, signal 175241/223362 (executing program)
2026/01/16 15:38:31 fetching corpus: 4372, signal 175739/224058 (executing program)
2026/01/16 15:38:31 fetching corpus: 4422, signal 176252/224680 (executing program)
2026/01/16 15:38:31 fetching corpus: 4472, signal 176809/225357 (executing program)
2026/01/16 15:38:31 fetching corpus: 4522, signal 177384/226047 (executing program)
2026/01/16 15:38:31 fetching corpus: 4571, signal 178215/226786 (executing program)
2026/01/16 15:38:31 fetching corpus: 4621, signal 178649/227441 (executing program)
2026/01/16 15:38:32 fetching corpus: 4669, signal 179110/228107 (executing program)
2026/01/16 15:38:32 fetching corpus: 4719, signal 179473/228692 (executing program)
2026/01/16 15:38:32 fetching corpus: 4769, signal 180034/229315 (executing program)
2026/01/16 15:38:32 fetching corpus: 4819, signal 180527/229916 (executing program)
2026/01/16 15:38:32 fetching corpus: 4869, signal 181116/230533 (executing program)
2026/01/16 15:38:32 fetching corpus: 4919, signal 181574/231093 (executing program)
2026/01/16 15:38:32 fetching corpus: 4969, signal 181976/231626 (executing program)
2026/01/16 15:38:32 fetching corpus: 5019, signal 182390/232196 (executing program)
2026/01/16 15:38:32 fetching corpus: 5069, signal 182989/232766 (executing program)
2026/01/16 15:38:33 fetching corpus: 5119, signal 183762/233359 (executing program)
2026/01/16 15:38:33 fetching corpus: 5169, signal 184126/233882 (executing program)
2026/01/16 15:38:33 fetching corpus: 5219, signal 184787/234469 (executing program)
2026/01/16 15:38:33 fetching corpus: 5268, signal 185166/235001 (executing program)
2026/01/16 15:38:33 fetching corpus: 5317, signal 185533/235509 (executing program)
2026/01/16 15:38:33 fetching corpus: 5366, signal 186161/236006 (executing program)
2026/01/16 15:38:33 fetching corpus: 5416, signal 186486/236470 (executing program)
2026/01/16 15:38:33 fetching corpus: 5465, signal 186799/236925 (executing program)
2026/01/16 15:38:33 fetching corpus: 5515, signal 187180/237411 (executing program)
2026/01/16 15:38:34 fetching corpus: 5565, signal 187516/237880 (executing program)
2026/01/16 15:38:34 fetching corpus: 5615, signal 187930/238336 (executing program)
2026/01/16 15:38:34 fetching corpus: 5665, signal 188237/238801 (executing program)
2026/01/16 15:38:34 fetching corpus: 5715, signal 188654/239238 (executing program)
2026/01/16 15:38:34 fetching corpus: 5765, signal 188962/239673 (executing program)
2026/01/16 15:38:34 fetching corpus: 5815, signal 189260/240077 (executing program)
2026/01/16 15:38:34 fetching corpus: 5865, signal 189553/240532 (executing program)
2026/01/16 15:38:34 fetching corpus: 5915, signal 190063/240598 (executing program)
2026/01/16 15:38:34 fetching corpus: 5965, signal 190349/240598 (executing program)
2026/01/16 15:38:34 fetching corpus: 6015, signal 190714/240598 (executing program)
2026/01/16 15:38:35 fetching corpus: 6065, signal 191207/240599 (executing program)
2026/01/16 15:38:35 fetching corpus: 6115, signal 191585/240599 (executing program)
2026/01/16 15:38:35 fetching corpus: 6165, signal 191928/240601 (executing program)
2026/01/16 15:38:35 fetching corpus: 6215, signal 192530/240602 (executing program)
2026/01/16 15:38:35 fetching corpus: 6265, signal 192973/240603 (executing program)
2026/01/16 15:38:35 fetching corpus: 6314, signal 193601/240603 (executing program)
2026/01/16 15:38:35 fetching corpus: 6364, signal 193946/240609 (executing program)
2026/01/16 15:38:35 fetching corpus: 6414, signal 194333/240609 (executing program)
2026/01/16 15:38:35 fetching corpus: 6464, signal 194715/240611 (executing program)
2026/01/16 15:38:36 fetching corpus: 6514, signal 195205/240629 (executing program)
2026/01/16 15:38:36 fetching corpus: 6563, signal 195599/240630 (executing program)
2026/01/16 15:38:36 fetching corpus: 6612, signal 196019/240639 (executing program)
2026/01/16 15:38:36 fetching corpus: 6661, signal 196359/240656 (executing program)
2026/01/16 15:38:36 fetching corpus: 6711, signal 196612/240656 (executing program)
2026/01/16 15:38:36 fetching corpus: 6760, signal 197253/240656 (executing program)
2026/01/16 15:38:36 fetching corpus: 6809, signal 197518/240665 (executing program)
2026/01/16 15:38:36 fetching corpus: 6859, signal 198056/240665 (executing program)
2026/01/16 15:38:37 fetching corpus: 6909, signal 198451/240676 (executing program)
2026/01/16 15:38:37 fetching corpus: 6959, signal 198906/240676 (executing program)
2026/01/16 15:38:37 fetching corpus: 7009, signal 199243/240676 (executing program)
2026/01/16 15:38:37 fetching corpus: 7059, signal 199527/240678 (executing program)
2026/01/16 15:38:37 fetching corpus: 7109, signal 199898/240678 (executing program)
2026/01/16 15:38:37 fetching corpus: 7159, signal 200243/240678 (executing program)
2026/01/16 15:38:37 fetching corpus: 7209, signal 200583/240682 (executing program)
2026/01/16 15:38:37 fetching corpus: 7259, signal 200804/240682 (executing program)
2026/01/16 15:38:37 fetching corpus: 7309, signal 201136/240682 (executing program)
2026/01/16 15:38:38 fetching corpus: 7359, signal 201438/240684 (executing program)
2026/01/16 15:38:38 fetching corpus: 7409, signal 201689/240684 (executing program)
2026/01/16 15:38:38 fetching corpus: 7458, signal 201966/240684 (executing program)
2026/01/16 15:38:38 fetching corpus: 7508, signal 202311/240686 (executing program)
2026/01/16 15:38:38 fetching corpus: 7558, signal 202666/240686 (executing program)
2026/01/16 15:38:38 fetching corpus: 7608, signal 203212/240729 (executing program)
2026/01/16 15:38:38 fetching corpus: 7658, signal 203555/240729 (executing program)
2026/01/16 15:38:39 fetching corpus: 7708, signal 203818/240729 (executing program)
2026/01/16 15:38:39 fetching corpus: 7758, signal 204097/240730 (executing program)
2026/01/16 15:38:39 fetching corpus: 7808, signal 204359/240731 (executing program)
2026/01/16 15:38:39 fetching corpus: 7858, signal 204716/240731 (executing program)
2026/01/16 15:38:39 fetching corpus: 7907, signal 205029/240731 (executing program)
2026/01/16 15:38:39 fetching corpus: 7957, signal 205674/240734 (executing program)
2026/01/16 15:38:39 fetching corpus: 8007, signal 206131/240740 (executing program)
2026/01/16 15:38:39 fetching corpus: 8057, signal 206419/240743 (executing program)
2026/01/16 15:38:39 fetching corpus: 8106, signal 206710/240757 (executing program)
2026/01/16 15:38:40 fetching corpus: 8156, signal 207135/240759 (executing program)
2026/01/16 15:38:40 fetching corpus: 8206, signal 207479/240759 (executing program)
2026/01/16 15:38:40 fetching corpus: 8256, signal 207795/240765 (executing program)
2026/01/16 15:38:40 fetching corpus: 8306, signal 208178/240766 (executing program)
2026/01/16 15:38:40 fetching corpus: 8356, signal 208394/240766 (executing program)
2026/01/16 15:38:40 fetching corpus: 8406, signal 208698/240767 (executing program)
2026/01/16 15:38:40 fetching corpus: 8456, signal 209174/240768 (executing program)
2026/01/16 15:38:40 fetching corpus: 8506, signal 209431/240768 (executing program)
2026/01/16 15:38:40 fetching corpus: 8555, signal 209770/240768 (executing program)
2026/01/16 15:38:41 fetching corpus: 8604, signal 210032/240768 (executing program)
2026/01/16 15:38:41 fetching corpus: 8654, signal 210761/240768 (executing program)
2026/01/16 15:38:41 fetching corpus: 8704, signal 211064/240768 (executing program)
2026/01/16 15:38:41 fetching corpus: 8754, signal 211315/240779 (executing program)
2026/01/16 15:38:41 fetching corpus: 8804, signal 211704/240779 (executing program)
2026/01/16 15:38:41 fetching corpus: 8854, signal 211954/240785 (executing program)
2026/01/16 15:38:41 fetching corpus: 8904, signal 212233/240785 (executing program)
2026/01/16 15:38:41 fetching corpus: 8954, signal 212510/240807 (executing program)
2026/01/16 15:38:41 fetching corpus: 9004, signal 212811/240807 (executing program)
2026/01/16 15:38:42 fetching corpus: 9053, signal 213109/240808 (executing program)
2026/01/16 15:38:42 fetching corpus: 9103, signal 213351/240809 (executing program)
2026/01/16 15:38:42 fetching corpus: 9153, signal 213728/240813 (executing program)
2026/01/16 15:38:42 fetching corpus: 9203, signal 214029/240818 (executing program)
2026/01/16 15:38:42 fetching corpus: 9253, signal 214301/240833 (executing program)
2026/01/16 15:38:42 fetching corpus: 9303, signal 214626/240833 (executing program)
2026/01/16 15:38:42 fetching corpus: 9353, signal 214826/240833 (executing program)
2026/01/16 15:38:42 fetching corpus: 9403, signal 215090/240833 (executing program)
2026/01/16 15:38:42 fetching corpus: 9453, signal 215410/240833 (executing program)
2026/01/16 15:38:43 fetching corpus: 9503, signal 215743/240833 (executing program)
2026/01/16 15:38:43 fetching corpus: 9552, signal 216003/240833 (executing program)
2026/01/16 15:38:43 fetching corpus: 9602, signal 216256/240834 (executing program)
2026/01/16 15:38:43 fetching corpus: 9652, signal 216593/240835 (executing program)
2026/01/16 15:38:43 fetching corpus: 9702, signal 216848/240835 (executing program)
2026/01/16 15:38:43 fetching corpus: 9752, signal 217359/240844 (executing program)
2026/01/16 15:38:43 fetching corpus: 9802, signal 217626/240844 (executing program)
2026/01/16 15:38:43 fetching corpus: 9852, signal 217961/240844 (executing program)
2026/01/16 15:38:43 fetching corpus: 9902, signal 218194/240846 (executing program)
2026/01/16 15:38:44 fetching corpus: 9952, signal 218491/240848 (executing program)
2026/01/16 15:38:44 fetching corpus: 10002, signal 218739/240848 (executing program)
2026/01/16 15:38:44 fetching corpus: 10052, signal 218986/240851 (executing program)
2026/01/16 15:38:44 fetching corpus: 10101, signal 219251/240853 (executing program)
2026/01/16 15:38:44 fetching corpus: 10151, signal 219506/240855 (executing program)
2026/01/16 15:38:44 fetching corpus: 10200, signal 219745/240856 (executing program)
2026/01/16 15:38:44 fetching corpus: 10250, signal 219961/240856 (executing program)
2026/01/16 15:38:44 fetching corpus: 10300, signal 220156/240856 (executing program)
2026/01/16 15:38:45 fetching corpus: 10350, signal 220432/240856 (executing program)
2026/01/16 15:38:45 fetching corpus: 10400, signal 220699/240857 (executing program)
2026/01/16 15:38:45 fetching corpus: 10450, signal 221095/240857 (executing program)
2026/01/16 15:38:45 fetching corpus: 10500, signal 221315/240857 (executing program)
2026/01/16 15:38:45 fetching corpus: 10549, signal 221647/240861 (executing program)
2026/01/16 15:38:45 fetching corpus: 10599, signal 221949/240867 (executing program)
2026/01/16 15:38:45 fetching corpus: 10649, signal 222191/240867 (executing program)
2026/01/16 15:38:45 fetching corpus: 10699, signal 222432/240868 (executing program)
2026/01/16 15:38:45 fetching corpus: 10749, signal 222667/240870 (executing program)
2026/01/16 15:38:46 fetching corpus: 10798, signal 222909/240873 (executing program)
2026/01/16 15:38:46 fetching corpus: 10848, signal 223144/240875 (executing program)
2026/01/16 15:38:46 fetching corpus: 10898, signal 223411/240877 (executing program)
2026/01/16 15:38:46 fetching corpus: 10948, signal 223613/240887 (executing program)
2026/01/16 15:38:46 fetching corpus: 10998, signal 223853/240892 (executing program)
2026/01/16 15:38:46 fetching corpus: 11048, signal 224053/240895 (executing program)
2026/01/16 15:38:46 fetching corpus: 11098, signal 224305/240895 (executing program)
2026/01/16 15:38:46 fetching corpus: 11148, signal 224525/240895 (executing program)
2026/01/16 15:38:46 fetching corpus: 11197, signal 224888/240895 (executing program)
2026/01/16 15:38:46 fetching corpus: 11247, signal 225122/240896 (executing program)
2026/01/16 15:38:47 fetching corpus: 11297, signal 225539/240896 (executing program)
2026/01/16 15:38:47 fetching corpus: 11347, signal 225734/240896 (executing program)
2026/01/16 15:38:47 fetching corpus: 11397, signal 225951/240896 (executing program)
2026/01/16 15:38:47 fetching corpus: 11447, signal 226198/240898 (executing program)
2026/01/16 15:38:47 fetching corpus: 11497, signal 226440/240898 (executing program)
2026/01/16 15:38:47 fetching corpus: 11547, signal 226615/240898 (executing program)
2026/01/16 15:38:47 fetching corpus: 11596, signal 226838/240900 (executing program)
2026/01/16 15:38:47 fetching corpus: 11646, signal 227119/240904 (executing program)
2026/01/16 15:38:47 fetching corpus: 11696, signal 227458/240904 (executing program)
2026/01/16 15:38:47 fetching corpus: 11746, signal 227697/240904 (executing program)
2026/01/16 15:38:47 fetching corpus: 11796, signal 228044/240904 (executing program)
2026/01/16 15:38:48 fetching corpus: 11846, signal 228230/240904 (executing program)
2026/01/16 15:38:48 fetching corpus: 11895, signal 228442/240904 (executing program)
2026/01/16 15:38:48 fetching corpus: 11945, signal 228587/240908 (executing program)
2026/01/16 15:38:48 fetching corpus: 11995, signal 228757/240908 (executing program)
2026/01/16 15:38:48 fetching corpus: 12045, signal 229000/240908 (executing program)
2026/01/16 15:38:48 fetching corpus: 12095, signal 229260/240908 (executing program)
2026/01/16 15:38:48 fetching corpus: 12145, signal 229514/240908 (executing program)
2026/01/16 15:38:48 fetching corpus: 12195, signal 229850/240912 (executing program)
2026/01/16 15:38:48 fetching corpus: 12245, signal 230115/240912 (executing program)
2026/01/16 15:38:49 fetching corpus: 12295, signal 230301/240912 (executing program)
2026/01/16 15:38:49 fetching corpus: 12345, signal 230497/240916 (executing program)
2026/01/16 15:38:49 fetching corpus: 12394, signal 230767/240916 (executing program)
2026/01/16 15:38:49 fetching corpus: 12444, signal 230970/240930 (executing program)
2026/01/16 15:38:49 fetching corpus: 12494, signal 231187/240930 (executing program)
2026/01/16 15:38:49 fetching corpus: 12544, signal 231429/240931 (executing program)
2026/01/16 15:38:49 fetching corpus: 12594, signal 231636/240938 (executing program)
2026/01/16 15:38:49 fetching corpus: 12644, signal 231850/240938 (executing program)
2026/01/16 15:38:49 fetching corpus: 12693, signal 232004/240938 (executing program)
2026/01/16 15:38:50 fetching corpus: 12743, signal 232293/240938 (executing program)
2026/01/16 15:38:50 fetching corpus: 12793, signal 232543/240948 (executing program)
2026/01/16 15:38:50 fetching corpus: 12843, signal 232799/240948 (executing program)
2026/01/16 15:38:50 fetching corpus: 12893, signal 232962/240948 (executing program)
2026/01/16 15:38:50 fetching corpus: 12942, signal 233159/240948 (executing program)
2026/01/16 15:38:50 fetching corpus: 12992, signal 233446/240948 (executing program)
2026/01/16 15:38:50 fetching corpus: 13042, signal 233667/240948 (executing program)
2026/01/16 15:38:50 fetching corpus: 13092, signal 233819/240948 (executing program)
2026/01/16 15:38:50 fetching corpus: 13141, signal 234059/240948 (executing program)
2026/01/16 15:38:51 fetching corpus: 13191, signal 234318/240949 (executing program)
2026/01/16 15:38:51 fetching corpus: 13241, signal 234509/240949 (executing program)
2026/01/16 15:38:51 fetching corpus: 13291, signal 234686/240949 (executing program)
2026/01/16 15:38:51 fetching corpus: 13340, signal 234858/240949 (executing program)
2026/01/16 15:38:51 fetching corpus: 13390, signal 235071/240950 (executing program)
2026/01/16 15:38:51 fetching corpus: 13440, signal 235248/240950 (executing program)
2026/01/16 15:38:51 fetching corpus: 13490, signal 235498/240950 (executing program)
2026/01/16 15:38:51 fetching corpus: 13540, signal 235675/240952 (executing program)
2026/01/16 15:38:52 fetching corpus: 13590, signal 235901/240952 (executing program)
2026/01/16 15:38:52 fetching corpus: 13639, signal 236081/240952 (executing program)
2026/01/16 15:38:52 fetching corpus: 13689, signal 236261/240958 (executing program)
2026/01/16 15:38:52 fetching corpus: 13739, signal 236492/240958 (executing program)
2026/01/16 15:38:52 fetching corpus: 13788, signal 236695/240958 (executing program)
2026/01/16 15:38:52 fetching corpus: 13838, signal 236876/240959 (executing program)
2026/01/16 15:38:52 fetching corpus: 13888, signal 237037/240964 (executing program)
2026/01/16 15:38:52 fetching corpus: 13938, signal 237264/240964 (executing program)
2026/01/16 15:38:52 fetching corpus: 13987, signal 237759/240964 (executing program)
2026/01/16 15:38:53 fetching corpus: 14036, signal 237981/240966 (executing program)
2026/01/16 15:38:53 fetching corpus: 14086, signal 238156/240966 (executing program)
2026/01/16 15:38:53 fetching corpus: 14136, signal 238363/240966 (executing program)
2026/01/16 15:38:53 fetching corpus: 14186, signal 238520/240967 (executing program)
2026/01/16 15:38:53 fetching corpus: 14235, signal 238670/240967 (executing program)
2026/01/16 15:38:53 fetching corpus: 14284, signal 238944/240967 (executing program)
2026/01/16 15:38:53 fetching corpus: 14312, signal 239054/240967 (executing program)
2026/01/16 15:38:53 fetching corpus: 14312, signal 239054/240967 (executing program)
2026/01/16 15:38:55 starting 8 fuzzer processes
15:38:55 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$sock_int(r0, 0x1, 0x1a, &(0x7f0000004f00), 0x4)

15:38:55 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000003d40), 0x4)
sendmmsg$inet6(r0, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

[   88.312433] audit: type=1400 audit(1768577935.581:7): avc:  denied  { execmem } for  pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
15:38:55 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000000)=0x1, 0x4)
sendto$inet(r0, &(0x7f0000000180)="9c491e06c97c49fd", 0x8, 0x0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
read(r0, &(0x7f0000000100)=""/110, 0x6e)

15:38:55 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000080))

15:38:55 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000001380)=@FILEID_BTRFS_WITH_PARENT_ROOT={0x28}, 0x0)

15:38:55 executing program 3:
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000380)=@ceph_nfs_fh={0x8, 0x80000}, 0x0)

15:38:55 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000000020000190000fffe0100000f000000000000000100000005000000000004000040000000000000ddf4655fddf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000008000000000000004201001203", 0x66, 0x400}], 0x0, &(0x7f0000000080)=ANY=[])

15:38:55 executing program 6:
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000)=0xffff)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r2 = dup2(r0, r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x13, r2, 0x0)

[   89.397012] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.400567] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.403968] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.410394] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.414064] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.569864] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   89.571937] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   89.576933] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   89.585369] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   89.588599] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   89.663027] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   89.669626] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   89.671182] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   89.673990] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   89.679154] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   89.687641] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   89.714882] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   89.722328] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   89.726432] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   89.728349] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   89.731309] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   89.733853] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   89.735766] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   89.738538] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   89.739736] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   89.743835] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   89.745734] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   89.749868] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   89.751357] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   89.756484] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   89.758595] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   89.788703] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   89.792501] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   89.793932] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   89.796422] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   89.800156] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   89.805398] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   89.809544] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   89.856714] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   89.871394] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   91.482843] Bluetooth: hci0: command tx timeout
[   91.610855] Bluetooth: hci1: command tx timeout
[   91.803297] Bluetooth: hci3: command tx timeout
[   91.803931] Bluetooth: hci6: command tx timeout
[   91.866299] Bluetooth: hci2: command tx timeout
[   91.866970] Bluetooth: hci5: command tx timeout
[   91.867629] Bluetooth: hci4: command tx timeout
[   91.930367] Bluetooth: hci7: command tx timeout
[   93.530338] Bluetooth: hci0: command tx timeout
[   93.658990] Bluetooth: hci1: command tx timeout
[   93.852340] Bluetooth: hci6: command tx timeout
[   93.852784] Bluetooth: hci3: command tx timeout
[   93.914350] Bluetooth: hci4: command tx timeout
[   93.914771] Bluetooth: hci5: command tx timeout
[   93.915157] Bluetooth: hci2: command tx timeout
[   93.978320] Bluetooth: hci7: command tx timeout
[   95.578330] Bluetooth: hci0: command tx timeout
[   95.706317] Bluetooth: hci1: command tx timeout
[   95.899347] Bluetooth: hci3: command tx timeout
[   95.899907] Bluetooth: hci6: command tx timeout
[   95.963615] Bluetooth: hci2: command tx timeout
[   95.963660] Bluetooth: hci5: command tx timeout
[   95.964181] Bluetooth: hci4: command tx timeout
[   96.031072] Bluetooth: hci7: command tx timeout
[   97.626678] Bluetooth: hci0: command tx timeout
[   97.754301] Bluetooth: hci1: command tx timeout
[   97.946317] Bluetooth: hci3: command tx timeout
[   97.946371] Bluetooth: hci6: command tx timeout
[   98.010940] Bluetooth: hci5: command tx timeout
[   98.010996] Bluetooth: hci2: command tx timeout
[   98.011477] Bluetooth: hci4: command tx timeout
[   98.075289] Bluetooth: hci7: command tx timeout
[  126.310602] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.311283] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.559489] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.560096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.665804] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.666684] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.726605] audit: type=1400 audit(1768577973.996:8): avc:  denied  { open } for  pid=3797 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  126.734191] audit: type=1400 audit(1768577973.996:9): avc:  denied  { kernel } for  pid=3797 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
15:39:34 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000003d40), 0x4)
sendmmsg$inet6(r0, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

[  126.825815] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.827015] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
15:39:34 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000003d40), 0x4)
sendmmsg$inet6(r0, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

15:39:34 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000003d40), 0x4)
sendmmsg$inet6(r0, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

[  127.148831] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.149492] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
15:39:34 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000003d40), 0x4)
sendmmsg$inet6(r0, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

15:39:34 executing program 4:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r0, &(0x7f0000000340)={'syz1', "f8c5804e31ef7c1978590c91200bd70c0b575f943e9c3f5eca5f1e650df197f8208f5652e2dbf4796205fb78c4e8d4cbaa4353b01f205fd6dc83f848013c2d592e98a57c2bbe6cca2ad1b7fd45e9e7c3c736a3ec027e81aad7c5fa6463cc95"}, 0x63)

[  127.331817] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.332473] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
15:39:34 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000003d40), 0x4)
sendmmsg$inet6(r0, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

15:39:34 executing program 4:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r0, &(0x7f0000000340)={'syz1', "f8c5804e31ef7c1978590c91200bd70c0b575f943e9c3f5eca5f1e650df197f8208f5652e2dbf4796205fb78c4e8d4cbaa4353b01f205fd6dc83f848013c2d592e98a57c2bbe6cca2ad1b7fd45e9e7c3c736a3ec027e81aad7c5fa6463cc95"}, 0x63)

15:39:34 executing program 4:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r0, &(0x7f0000000340)={'syz1', "f8c5804e31ef7c1978590c91200bd70c0b575f943e9c3f5eca5f1e650df197f8208f5652e2dbf4796205fb78c4e8d4cbaa4353b01f205fd6dc83f848013c2d592e98a57c2bbe6cca2ad1b7fd45e9e7c3c736a3ec027e81aad7c5fa6463cc95"}, 0x63)

[  127.425169] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.431272] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.533512] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.534141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.619269] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.619887] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.632831] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.633814] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.710366] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.710985] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.765970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.766599] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.936003] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.936640] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.003802] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.004458] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.032463] loop5: detected capacity change from 0 to 4
[  128.038528] EXT4-fs (loop5): Can't support bigalloc feature without extents feature
[  128.038528] 
[  128.047606] loop5: detected capacity change from 0 to 4
[  128.049026] EXT4-fs (loop5): Can't support bigalloc feature without extents feature
[  128.049026] 
[  128.059344] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.059973] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.079002] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.080094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
15:39:35 executing program 1:
ioctl$INCFS_IOC_CREATE_FILE(0xffffffffffffffff, 0xc058671e, &(0x7f0000000080)={{}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)='\b', 0x1, 0x0, 0x0})
sched_setattr(0x0, &(0x7f0000000140)={0x58}, 0x0)

15:39:35 executing program 6:
get_robust_list(0x0, 0x0, 0xfffffffffffffffd)

15:39:35 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000003d40), 0x4)
sendmmsg$inet6(r0, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

15:39:35 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r0, &(0x7f0000000340)={'syz1', "f8c5804e31ef7c1978590c91200bd70c0b575f943e9c3f5eca5f1e650df197f8208f5652e2dbf4796205fb78c4e8d4cbaa4353b01f205fd6dc83f848013c2d592e98a57c2bbe6cca2ad1b7fd45e9e7c3c736a3ec027e81aad7c5fa6463cc95"}, 0x63)

15:39:35 executing program 4:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r0, &(0x7f0000000340)={'syz1', "f8c5804e31ef7c1978590c91200bd70c0b575f943e9c3f5eca5f1e650df197f8208f5652e2dbf4796205fb78c4e8d4cbaa4353b01f205fd6dc83f848013c2d592e98a57c2bbe6cca2ad1b7fd45e9e7c3c736a3ec027e81aad7c5fa6463cc95"}, 0x63)

15:39:35 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETSEL(r0, 0x5452, &(0x7f0000000000))
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETSEL(r1, 0x5452, &(0x7f0000000000))
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)

15:39:35 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
r1 = pidfd_open(r0, 0x0)
process_madvise(r1, &(0x7f00000003c0)=[{&(0x7f0000000000)="b6", 0x1}], 0x1, 0x15, 0x0)

15:39:35 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000000020000190000fffe0100000f000000000000000100000005000000000004000040000000000000ddf4655fddf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000008000000000000004201001203", 0x66, 0x400}], 0x0, &(0x7f0000000080)=ANY=[])

[  128.265593] loop5: detected capacity change from 0 to 4
[  128.272023] EXT4-fs (loop5): Can't support bigalloc feature without extents feature
[  128.272023] 
15:39:35 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r0, &(0x7f0000000340)={'syz1', "f8c5804e31ef7c1978590c91200bd70c0b575f943e9c3f5eca5f1e650df197f8208f5652e2dbf4796205fb78c4e8d4cbaa4353b01f205fd6dc83f848013c2d592e98a57c2bbe6cca2ad1b7fd45e9e7c3c736a3ec027e81aad7c5fa6463cc95"}, 0x63)

15:39:35 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETSEL(r0, 0x5452, &(0x7f0000000000))
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETSEL(r1, 0x5452, &(0x7f0000000000))
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)

15:39:35 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f0000000080)=""/126, &(0x7f0000000100)=0x7e)

15:39:35 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000000020000190000fffe0100000f000000000000000100000005000000000004000040000000000000ddf4655fddf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000008000000000000004201001203", 0x66, 0x400}], 0x0, &(0x7f0000000080)=ANY=[])

15:39:35 executing program 6:
unshare(0x8000000)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
semget$private(0x0, 0x4000, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x0, 0x0, 0x1800}], 0x1, &(0x7f0000000040)={0x0, 0x989680})
semctl$IPC_RMID(0x0, 0x0, 0x0)

15:39:35 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000280)={0x20, r1, 0x1, 0x0, 0x0, {0x25}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, 0x0, 0x0)

15:39:35 executing program 1:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
ioctl$SG_GET_SG_TABLESIZE(r0, 0x2288, &(0x7f0000000000))

15:39:35 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
r1 = pidfd_open(r0, 0x0)
process_madvise(r1, &(0x7f00000003c0)=[{&(0x7f0000000000)="b6", 0x1}], 0x1, 0x15, 0x0)

[  128.394039] loop5: detected capacity change from 0 to 4
[  128.401601] EXT4-fs (loop5): Can't support bigalloc feature without extents feature
[  128.401601] 
15:39:35 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETSEL(r0, 0x5452, &(0x7f0000000000))
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETSEL(r1, 0x5452, &(0x7f0000000000))
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)

15:39:35 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f0000000080)=""/126, &(0x7f0000000100)=0x7e)

15:39:35 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
r1 = pidfd_open(r0, 0x0)
process_madvise(r1, &(0x7f00000003c0)=[{&(0x7f0000000000)="b6", 0x1}], 0x1, 0x15, 0x0)

15:39:35 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, &(0x7f0000000040)=0x1000, 0x4)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000000)=0x9, 0x4)

15:39:35 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000000020000190000fffe0100000f000000000000000100000005000000000004000040000000000000ddf4655fddf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000008000000000000004201001203", 0x66, 0x400}], 0x0, &(0x7f0000000080)=ANY=[])

15:39:35 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000280)={0x20, r1, 0x1, 0x0, 0x0, {0x25}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, 0x0, 0x0)

15:39:35 executing program 7:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_misc(r0, &(0x7f0000000340)={'syz1', "f8c5804e31ef7c1978590c91200bd70c0b575f943e9c3f5eca5f1e650df197f8208f5652e2dbf4796205fb78c4e8d4cbaa4353b01f205fd6dc83f848013c2d592e98a57c2bbe6cca2ad1b7fd45e9e7c3c736a3ec027e81aad7c5fa6463cc95"}, 0x63)

[  128.502949] loop5: detected capacity change from 0 to 4
[  128.510178] EXT4-fs (loop5): Can't support bigalloc feature without extents feature
[  128.510178] 
15:39:35 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETSEL(r0, 0x5452, &(0x7f0000000000))
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETSEL(r1, 0x5452, &(0x7f0000000000))
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)

15:39:35 executing program 6:
unshare(0x8000000)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
semget$private(0x0, 0x4000, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x0, 0x0, 0x1800}], 0x1, &(0x7f0000000040)={0x0, 0x989680})
semctl$IPC_RMID(0x0, 0x0, 0x0)

15:39:35 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f00000002c0)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000400)=@file={0x1, './file0\x00'}, 0x6e)
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0)

15:39:35 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f0000000080)=""/126, &(0x7f0000000100)=0x7e)

15:39:35 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
r1 = pidfd_open(r0, 0x0)
process_madvise(r1, &(0x7f00000003c0)=[{&(0x7f0000000000)="b6", 0x1}], 0x1, 0x15, 0x0)

15:39:35 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000006080), 0x0)
select(0x36, &(0x7f0000000480)={0x8}, 0x0, &(0x7f0000000500)={0x2a}, 0x0)

15:39:35 executing program 1:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
ptrace(0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000))

15:39:35 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000280)={0x20, r1, 0x1, 0x0, 0x0, {0x25}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, 0x0, 0x0)

15:39:35 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f0000000080)=""/126, &(0x7f0000000100)=0x7e)

15:39:35 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000280)={0x20, r1, 0x1, 0x0, 0x0, {0x25}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, 0x0, 0x0)

15:39:35 executing program 5:
prctl$PR_SET_SECUREBITS(0x1c, 0x36)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x1100)
setfsuid(r0)

15:39:36 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_QOS_MAP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x0, 0x0, {{0x41}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0)

15:39:36 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000700), r0)
sendmsg$IEEE802154_SCAN_REQ(r1, &(0x7f0000000800)={&(0x7f00000006c0), 0xc, &(0x7f00000007c0)={&(0x7f0000000740)={0x24, r2, 0xa19, 0x0, 0x0, {}, [@IEEE802154_ATTR_PAGE={0x5}, @IEEE802154_ATTR_DURATION={0x5}]}, 0x24}}, 0x0)

15:39:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000006080), 0x0)
select(0x36, &(0x7f0000000480)={0x8}, 0x0, &(0x7f0000000500)={0x2a}, 0x0)

15:39:36 executing program 3:
sched_setaffinity(0x0, 0x8, &(0x7f0000002700)=0x5e69)
sched_setaffinity(0x0, 0x8, &(0x7f0000002940)=0xffffffffffffffaa)

15:39:36 executing program 1:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
chdir(&(0x7f0000000300)='./file1\x00')
creat(&(0x7f0000000080)='./file0\x00', 0x0)
creat(&(0x7f00000000c0)='./file1\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x2)

15:39:36 executing program 6:
unshare(0x8000000)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
semget$private(0x0, 0x4000, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x0, 0x0, 0x1800}], 0x1, &(0x7f0000000040)={0x0, 0x989680})
semctl$IPC_RMID(0x0, 0x0, 0x0)

15:39:36 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_script(r0, &(0x7f0000001b80)=ANY=[@ANYBLOB="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"], 0x101e)

15:39:36 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup3(r0, r1, 0x0)
sendmmsg$unix(r2, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

15:39:36 executing program 5:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000001d00)=[{{&(0x7f0000000080)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0, 0x0, &(0x7f0000001640)=[@hoplimit_2292={{0x14}}, @dstopts={{0x18}}], 0x30}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

15:39:36 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x401)
write$evdev(r0, &(0x7f00000000c0)=[{{0x77359400}, 0x1, 0x12, 0x2}], 0xff2f)

15:39:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000006080), 0x0)
select(0x36, &(0x7f0000000480)={0x8}, 0x0, &(0x7f0000000500)={0x2a}, 0x0)

15:39:36 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='net/ipv6_route\x00')
pread64(r0, &(0x7f0000000180)=""/70, 0x46, 0x6)

15:39:36 executing program 1:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'lo\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000800)={0x34, r0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x34}}, 0x0)

15:39:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000006080), 0x0)
select(0x36, &(0x7f0000000480)={0x8}, 0x0, &(0x7f0000000500)={0x2a}, 0x0)

15:39:36 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x101002, 0x0)
sendfile(r0, r0, 0x0, 0x5)

15:39:36 executing program 1:
madvise(&(0x7f0000870000/0x4000)=nil, 0x4000, 0x17)
mremap(&(0x7f0000871000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0)
madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x15)

15:39:36 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x401)
write$evdev(r0, &(0x7f00000000c0)=[{{0x77359400}, 0x1, 0x12, 0x2}], 0xff2f)

15:39:36 executing program 0:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_TTY(r0, &(0x7f0000001200)={&(0x7f00000010c0), 0xc, &(0x7f00000011c0)={&(0x7f0000001100)={0x10}, 0x10}}, 0x0)

15:39:36 executing program 6:
unshare(0x8000000)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
semget$private(0x0, 0x4000, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x0, 0x0, 0x1800}], 0x1, &(0x7f0000000040)={0x0, 0x989680})
semctl$IPC_RMID(0x0, 0x0, 0x0)

15:39:36 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_script(r0, &(0x7f0000001b80)=ANY=[@ANYBLOB="2321202e2f66696c653020207b20242a2a2c20295c48202e28294023250a663fe7b89caf2253632352aa781568a42f51dff242c4f5ad67ca81cb4404dce84259aac48045cf02f2a81bf40ac23c319ab26a3f01cc6634b83584d3754e49e2b115c25523f45ac9bbdfd8e7cb4af165daba43b3ecaeaf9f8bdb6f4eef2b1a01fff3c1f53cbc6d13da5aab77adb40410234b9befeeb52202d847edd2bd9f4769e42654a5f425317255bd497a405612d8426df8634ca286252773005f5dcd0fca35ad559fac5b29e773c074b009e7e6426e300936c852873d37b67e10d0d85195468c038be556118b85c7476b97ffd76e4763ad1dc2710b7f6c5a500b4cbb8d3e4d768cbf414c36123e78f8a281de37d4407f04f50ecbec278dc71550cf665aeae11ea279589069f10070b94d6676e03a5b7d7748bd141258d3b618b4f34889e2ae79e8f18d30ac1614111afb03450c2ba9066d3be75be34c4eb902607b76f96161ea7478ff2077b5158412d0a9af463f203a76a06f2d239c5a484d0066290e77bed2ff803272b0a5eb9daec2fc51c3a3e118d7f64e7560284f939add29cf3eeb59689c4bb01b82e36697f7e35ac7b3d6f455c763c1fdebd07fc4613aeb664baeabcd051b0d5b5757b84ea643d5c8478a994c0e7edb36497fc27585e5013cdddc0a6c505a5b8d678161032857cc05d23bd86116e1f76f6447ef75d29800223b65d595af68341330bdc3f47b2208551294fd74a472a9b37fad4e1c791926fa99c5a7dd8c39f67de4c438f7cf322f258270682431394e7de6e1584bdab8d71979ec98c0a2ab2d4a65f0050b92e97652d08f81ce739abad80a6254cd3b764789b16f2d4682834b11a3838496119902667bbea34a0cd5f624be984bcd43aa3f8ef9ad7e08f31350918186c0acf2c616cfce3dc89ec44244271f17706d68f3c7d83906fc8bdc573c1e7852d06a88a4a06500d89ec3a79e1816503b19ea6b6c32a3aa64ecb6aaea581bc7a7b057ab2d85dccc2568ee81f2c9bdfbe232279d966ef0ca467e5a424a3b494923d96eed339a064c0128a65c3e0f7e903fc84ed6e6f7146eb6622c070a0628e1b90538ef12ef13fa7dd3cdf8fb0bbb385830c354d9f0171f4841521451ced29bf26dc2cc82000d3c07f5b114548b7eba1c7bb608a00aa1bac9fc6bb0168f60096ca8a0b671b7ae88c04f45de651c38cad24b5617dfa503911d050e8db4e7f0ea48db4c6fbd547e5ef2ef323c904e3738304a99e6e0ff5d515ddc46c365665f16bf08051aaa2020c8552af651b02862ea553dd860e60ea0b27cb7b1905173f03e34298a686b38d304e30c6ac6c4b31f6ac60bd2ca031a9ac761c3123ba6be8fcc65bf2bbb141b78e2cb9e635619187bb721effd58125793538bf8686eb3647a62e67fe1e999e73293ab5f555091c09b71"], 0x101e)

15:39:36 executing program 5:
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)

15:39:36 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002b00)='/proc/sysvipc/msg\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000040)=""/127, 0x7f, 0x3)

15:39:36 executing program 1:
madvise(&(0x7f0000870000/0x4000)=nil, 0x4000, 0x17)
mremap(&(0x7f0000871000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0)
madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x15)

15:39:36 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x401)
write$evdev(r0, &(0x7f00000000c0)=[{{0x77359400}, 0x1, 0x12, 0x2}], 0xff2f)

15:39:36 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
fchown(r2, 0x0, 0x0)

15:39:36 executing program 0:
r0 = syz_io_uring_setup(0x2262, &(0x7f0000000300), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000003ac0))
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0x12, 0x0, 0x0)

[  129.191155] audit: type=1400 audit(1768577976.459:10): avc:  denied  { write } for  pid=4046 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
15:39:36 executing program 1:
madvise(&(0x7f0000870000/0x4000)=nil, 0x4000, 0x17)
mremap(&(0x7f0000871000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0)
madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x15)

15:39:36 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_script(r0, &(0x7f0000001b80)=ANY=[@ANYBLOB="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"], 0x101e)

15:39:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x11000)=nil, 0x11000, 0x0, 0x44032, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt(r0, 0xff, 0x7, 0x0, 0x0)

15:39:36 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0)
r1 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x44000)
io_setup(0xfff, &(0x7f0000000040)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000000c0)="d3", 0x1}])
r3 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r3)
r4 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r4)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x80002, 0x0)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_ADD(r6, 0x4c80, r7)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r7)

15:39:36 executing program 6:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)={0x24, 0x2e, 0xffffffffffffffff, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd=r1}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @pid}]}]}, 0x24}], 0x1}, 0x0)

15:39:36 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000280)=@req3={0x1000, 0x1, 0x400, 0x4}, 0x1c)
setsockopt$packet_int(r0, 0x107, 0xe, &(0x7f0000000100), 0x4)

15:39:36 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x101002, 0x0)
sendfile(r0, r0, 0x0, 0x5)

15:39:36 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x1, 0x401)
write$evdev(r0, &(0x7f00000000c0)=[{{0x77359400}, 0x1, 0x12, 0x2}], 0xff2f)

15:39:36 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x101002, 0x0)
sendfile(r0, r0, 0x0, 0x5)

15:39:36 executing program 1:
madvise(&(0x7f0000870000/0x4000)=nil, 0x4000, 0x17)
mremap(&(0x7f0000871000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0)
madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x15)

15:39:36 executing program 3:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000200)={0x80, 0x0, 'client1\x00', 0x0, "3ea01b02c06ead7d", "7e8367a423427a1485773e6c861fe3c6df6c110eb037b8d7c4b2c8e7014cf7c1"})

15:39:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x11000)=nil, 0x11000, 0x0, 0x44032, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt(r0, 0xff, 0x7, 0x0, 0x0)

15:39:36 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x101002, 0x0)
sendfile(r0, r0, 0x0, 0x5)

15:39:36 executing program 3:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000200)={0x80, 0x0, 'client1\x00', 0x0, "3ea01b02c06ead7d", "7e8367a423427a1485773e6c861fe3c6df6c110eb037b8d7c4b2c8e7014cf7c1"})

15:39:36 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x101002, 0x0)
sendfile(r0, r0, 0x0, 0x5)

15:39:36 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
write$binfmt_script(r0, &(0x7f0000001b80)=ANY=[@ANYBLOB="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"], 0x101e)

15:39:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x11000)=nil, 0x11000, 0x0, 0x44032, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt(r0, 0xff, 0x7, 0x0, 0x0)

15:39:36 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x101002, 0x0)
sendfile(r0, r0, 0x0, 0x5)

15:39:36 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x101002, 0x0)
sendfile(r0, r0, 0x0, 0x5)

15:39:36 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xb0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_getevents(0x0, 0x0, 0x0, 0x0, 0x0)

15:39:36 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000100)=@abs={0x1}, 0x2)

15:39:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x11000)=nil, 0x11000, 0x0, 0x44032, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt(r0, 0xff, 0x7, 0x0, 0x0)

15:39:36 executing program 4:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000001180)=[{&(0x7f0000000000)="a20e73f1b1812c8df6967520cdbfb383417a9437ee7abadfd3289b3b076d", 0x1e}], 0x1)

15:39:36 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write(r0, &(0x7f00000001c0)="9c76aaf5cef6d667d09694753950006afbbaf50c9088a1f4fae74d4c9e1605f9d6e08f17d84aff747ba7ea01436b4aa585fa7c8d7461c71b68d59bfbae3efda3004e347c31f38970830d7dca1bbeffafe65440af3dedd695fb173bb83a9d7ebfa6c8abc1a3a5444786ecfc0afafa4e93c6e1be892c49d5a4bb6e49febaf414b5a2566a9b3730d0b188e0344f05b481db8d31cc1e93462ad34c99268ad2523e5cc69c502719f806cafa0eebd67e9cebf5befc176d6d8f48eeb678df639d7221deec321210dd2437555ce49e7f1b32879c988f9f75d5047c8e4aca429b75", 0xdd)

15:39:36 executing program 3:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000200)={0x80, 0x0, 'client1\x00', 0x0, "3ea01b02c06ead7d", "7e8367a423427a1485773e6c861fe3c6df6c110eb037b8d7c4b2c8e7014cf7c1"})

15:39:36 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xb0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_getevents(0x0, 0x0, 0x0, 0x0, 0x0)

15:39:36 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0)
r1 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x44000)
io_setup(0xfff, &(0x7f0000000040)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000000c0)="d3", 0x1}])
r3 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r3)
r4 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r4)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x80002, 0x0)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r6, 0x4c81, 0x0)
r7 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_ADD(r6, 0x4c80, r7)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r7)

15:39:36 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x44000)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x3, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x8, 0x1, 0x0, r0, &(0x7f00000000c0)="d3", 0x1}])

15:39:37 executing program 7:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
fcntl$lock(r0, 0x26, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2})
fcntl$lock(r0, 0x25, &(0x7f0000000240)={0x1, 0x0, 0x9})

15:39:37 executing program 3:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000200)={0x80, 0x0, 'client1\x00', 0x0, "3ea01b02c06ead7d", "7e8367a423427a1485773e6c861fe3c6df6c110eb037b8d7c4b2c8e7014cf7c1"})

15:39:37 executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="fc000000190001000000000000000000ac1414aa000000000000000000000000ac1e000100000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000001300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000044000500fc01000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006b"], 0xfc}}, 0x0)

[  129.777720] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
15:39:37 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xb0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_getevents(0x0, 0x0, 0x0, 0x0, 0x0)

15:39:37 executing program 3:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x5fe7, &(0x7f0000000440)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000300), &(0x7f0000000580))

15:39:37 executing program 7:
r0 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000000), &(0x7f0000000040)=0x4)

15:39:37 executing program 4:
ioperm(0x0, 0x7, 0x1)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)

[  129.822801] 
[  129.822811] =====================================
[  129.822816] WARNING: bad unlock balance detected!
[  129.822821] 6.19.0-rc5-next-20260116 #1 Not tainted
[  129.822827] -------------------------------------
[  129.822831] syz-executor.5/4131 is trying to release lock (rcu_read_lock) at:
[  129.822844] [<ffffffff81c1dee5>] __wait_on_freeing_inode+0x105/0x350
[  129.822870] but there are no more locks to release!
[  129.822874] 
[  129.822874] other info that might help us debug this:
[  129.822878] 4 locks held by syz-executor.5/4131:
[  129.822884]  #0: ffff88800a14e3f8 (sb_writers#3){.+.+}-{0:0}, at: filename_create+0xf7/0x400
[  129.822923]  #1: ffff88801fe66330 (&type->i_mutex_dir_key#3/1){+.+.}-{4:4}, at: filename_create+0x1b1/0x400
[  129.822967]  #2: ffff88800fb7a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xe32/0x12d0
[  129.823007]  #3: ffffffff85c16898 (inode_hash_lock){+.+.}-{3:3}, at: insert_inode_locked+0xf9/0x890
[  129.823042] 
[  129.823042] stack backtrace:
[  129.823050] CPU: 0 UID: 0 PID: 4131 Comm: syz-executor.5 Not tainted 6.19.0-rc5-next-20260116 #1 PREEMPT(lazy) 
[  129.823064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  129.823071] Call Trace:
[  129.823076]  <TASK>
[  129.823081]  dump_stack_lvl+0xca/0x120
[  129.823110]  ? __wait_on_freeing_inode+0x105/0x350
[  129.823124]  print_unlock_imbalance_bug+0x118/0x130
[  129.823140]  ? __wait_on_freeing_inode+0x105/0x350
[  129.823154]  lock_release+0x1ee/0x270
[  129.823169]  __wait_on_freeing_inode+0x10a/0x350
[  129.823184]  ? __pfx___wait_on_freeing_inode+0x10/0x10
[  129.823200]  ? __pfx_var_wake_function+0x10/0x10
[  129.823218]  ? lock_is_held_type+0x9e/0x120
[  129.823234]  insert_inode_locked+0x25f/0x890
[  129.823252]  __ext4_new_inode+0x223d/0x4cd0
[  129.823271]  ? __pfx___ext4_new_inode+0x10/0x10
[  129.823286]  ? __pfx___dquot_initialize+0x10/0x10
[  129.823305]  ? __pfx_avc_has_perm+0x10/0x10
[  129.823322]  ext4_symlink+0x623/0xb40
[  129.823342]  ? __pfx_ext4_symlink+0x10/0x10
[  129.823359]  ? security_inode_permission+0x72/0xe0
[  129.823373]  vfs_symlink+0x44b/0x840
[  129.823390]  filename_symlinkat+0x158/0x440
[  129.823405]  ? __pfx_filename_symlinkat+0x10/0x10
[  129.823418]  ? strncpy_from_user+0x21b/0x2f0
[  129.823436]  __x64_sys_symlink+0x82/0x110
[  129.823450]  do_syscall_64+0xbf/0x420
[  129.823463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.823476] RIP: 0033:0x7f1ed5c2d427
[  129.823485] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 58 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  129.823496] RSP: 002b:00007ffc88042db8 EFLAGS: 00000206 ORIG_RAX: 0000000000000058
[  129.823507] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1ed5c2d427
[  129.823514] RDX: 00007ffc88042e93 RSI: 00007f1ed5c8802f RDI: 00007ffc88042e80
[  129.823522] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007ffc88042c50
[  129.823529] R10: 00007ffc88042b07 R11: 0000000000000206 R12: 0000000000000001
[  129.823536] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc88042e80
[  129.823548]  </TASK>
[  129.823618] ------------[ cut here ]------------
[  129.823623] WARNING: kernel/rcu/tree_plugin.h:443 at __rcu_read_unlock+0x25f/0x5c0, CPU#0: syz-executor.5/4131
[  129.823709] Modules linked in:
[  129.823748] CPU: 0 UID: 0 PID: 4131 Comm: syz-executor.5 Not tainted 6.19.0-rc5-next-20260116 #1 PREEMPT(lazy) 
[  129.823761] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  129.823768] RIP: 0010:__rcu_read_unlock+0x25f/0x5c0
[  129.823843] Code: f2 02 00 00 c7 43 58 01 00 00 00 bf 09 00 00 00 e8 d6 b7 de ff 4d 85 f6 0f 84 73 fe ff ff e8 38 8a 20 00 fb e9 68 fe ff ff 90 <0f> 0b 90 5b 5d 41 5c 41 5d 41 5e e9 81 4d 74 03 e8 2c 5d 56 00 e9
[  129.823854] RSP: 0018:ffff88801f3df9a0 EFLAGS: 00010286
[  129.823864] RAX: 00000000ffffffff RBX: ffff888016741b80 RCX: ffffffff815660f7
[  129.823872] RDX: 0000000000000000 RSI: ffffffff81566100 RDI: ffff888016741f7c
[  129.823879] RBP: ffff888016741b80 R08: 0000000000000000 R09: fffffbfff0ba7040
[  129.823887] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888016741b80
[  129.823895] R13: 0000000000000001 R14: ffffffff85c0d4c0 R15: ffff88801fef0ca0
[  129.823904] FS:  0000555572f45400(0000) GS:ffff8880e5342000(0000) knlGS:0000000000000000
[  129.823916] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  129.823924] CR2: 00007f1ed5cad545 CR3: 0000000048e79000 CR4: 0000000000350ef0
[  129.823932] Call Trace:
[  129.823967]  <TASK>
[  129.824369] ------------[ cut here ]------------
[  129.824375] WARNING: kernel/rcu/tree_exp.h:803 at rcu_exp_handler+0x12b/0x570, CPU#0: syz-executor.5/4131
[  129.824462] Modules linked in:
[  129.824501] CPU: 0 UID: 0 PID: 4131 Comm: syz-executor.5 Not tainted 6.19.0-rc5-next-20260116 #1 PREEMPT(lazy) 
[  129.824516] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  129.824524] RIP: 0010:rcu_exp_handler+0x12b/0x570
[  129.824600] Code: 03 0f b6 04 02 4c 89 e2 83 e2 07 38 d0 7f 08 84 c0 0f 85 cb 03 00 00 0f b6 43 11 84 c0 75 b6 85 c9 74 1d 0f 8f bf 00 00 00 90 <0f> 0b 90 48 83 c4 10 5b 5d 41 5c 41 5d 41 5e 41 5f e9 6f d7 74 03
[  129.824610] RSP: 0018:ffff88806ce08f50 EFLAGS: 00010086
[  129.824619] RAX: 0000000000000000 RBX: ffff88806ce38800 RCX: 00000000ffffffff
[  129.824627] RDX: 0000000000000001 RSI: ffff888016741b80 RDI: ffff888016741f7c
[  129.824634] RBP: ffffffff85e31300 R08: 0000000000000000 R09: fffffbfff0ccdd0a
[  129.824641] R10: 0000000000000001 R11: ffff88806ce08ff8 R12: ffff88806ce38811
[  129.824649] R13: ffff88806ce38828 R14: ffffffff85e31378 R15: ffff88806ce38820
[  129.824658] FS:  0000555572f45400(0000) GS:ffff8880e5342000(0000) knlGS:0000000000000000
[  129.824668] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  129.824675] CR2: 00007f1ed5cad545 CR3: 0000000048e79000 CR4: 0000000000350ef0
[  129.824683] Call Trace:
[  129.824719]  <IRQ>
[  129.825491]  __flush_smp_call_function_queue+0x47e/0xef0
[  129.825697]  ? __pfx_rcu_exp_handler+0x10/0x10
[  129.826449]  __sysvec_call_function_single+0x6d/0x310
[  129.826654]  sysvec_call_function_single+0xa1/0xc0
[  129.826863]  </IRQ>
[  129.826867]  <TASK>
[  129.827156]  asm_sysvec_call_function_single+0x1a/0x20
[  129.827264] RIP: 0010:handle_bug+0x209/0x4f0
[  129.827340] Code: 83 db ff 0f 1f 44 00 00 90 4c 8b ad 90 00 00 00 31 ff 41 81 e5 00 02 00 00 4c 89 ee 0f 1f 44 00 00 4d 85 ed 0f 85 3d 01 00 00 <0f> 1f 44 00 00 48 63 fb 48 c7 c6 60 2a e2 84 0f 1f 44 00 00 81 fb
[  129.827351] RSP: 0018:ffff88801f3df480 EFLAGS: 00000206
[  129.827360] RAX: ffff88801f3df4e8 RBX: 000000000000fffe RCX: ffffffff810016ca
[  129.827367] RDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000
[  129.827374] RBP: ffff88801f3df4e8 R08: 0000000000000000 R09: 0000000000000000
[  129.827381] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff815d742f
[  129.827388] R13: 0000000000000200 R14: 0000000000000002 R15: 000000000000000b
[  129.827678]  ? __rcu_read_unlock+0x25f/0x5c0
[  129.828425]  ? restore_regs_and_return_to_kernel+0x2e/0x2e
[  129.829393]  ? perf_trace_lock+0xbb/0x4f0
[  129.830063]  exc_invalid_op+0x35/0x80
[  129.830460]  asm_exc_invalid_op+0x1a/0x20
[  129.830566] RIP: 0010:__rcu_read_unlock+0x25f/0x5c0
[  129.830642] Code: f2 02 00 00 c7 43 58 01 00 00 00 bf 09 00 00 00 e8 d6 b7 de ff 4d 85 f6 0f 84 73 fe ff ff e8 38 8a 20 00 fb e9 68 fe ff ff 90 <0f> 0b 90 5b 5d 41 5c 41 5d 41 5e e9 81 4d 74 03 e8 2c 5d 56 00 e9
[  129.830653] RSP: 0018:ffff88801f3df590 EFLAGS: 00010286
[  129.830662] RAX: 00000000ffffffff RBX: ffff888016741b80 RCX: 0000000000000005
[  129.830669] RDX: 0000000000000000 RSI: ffffffff85e25fc0 RDI: ffff888016741f7c
[  129.830676] RBP: ffff888016741b80 R08: 0000000000000000 R09: ffffffff84e98ac0
[  129.830683] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888016741b80
[  129.830690] R13: 0000000000000000 R14: ffffffff85e7fbc8 R15: ffffffff85999179
[  129.833112]  __is_insn_slot_addr+0x140/0x290
[  129.833698]  kernel_text_address+0x48/0xc0
[  129.834021]  __kernel_text_address+0xd/0x40
[  129.834231]  __show_trace_log_lvl+0x1c3/0x380
[  129.836240]  ? __wait_on_freeing_inode+0x10f/0x350
[  129.836889]  ? __rcu_read_unlock+0x25f/0x5c0
[  129.837152]  __warn+0xfc/0x370
[  129.837553]  ? __rcu_read_unlock+0x25f/0x5c0
[  129.837911]  __report_bug+0x421/0x5b0
[  129.838696]  ? __pfx___report_bug+0x10/0x10
[  129.840013]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  129.840949]  ? __rcu_read_unlock+0x25f/0x5c0
[  129.841311]  report_bug+0x7c/0x120
[  129.841515]  ? __rcu_read_unlock+0x25f/0x5c0
[  129.841688]  handle_bug+0x2e8/0x4f0
[  129.841892]  ? trace_hardirqs_off_finish+0xe3/0x110
[  129.842563]  exc_invalid_op+0x35/0x80
[  129.842958]  asm_exc_invalid_op+0x1a/0x20
[  129.843065] RIP: 0010:__rcu_read_unlock+0x25f/0x5c0
[  129.843145] Code: f2 02 00 00 c7 43 58 01 00 00 00 bf 09 00 00 00 e8 d6 b7 de ff 4d 85 f6 0f 84 73 fe ff ff e8 38 8a 20 00 fb e9 68 fe ff ff 90 <0f> 0b 90 5b 5d 41 5c 41 5d 41 5e e9 81 4d 74 03 e8 2c 5d 56 00 e9
[  129.843158] RSP: 0018:ffff88801f3df9a0 EFLAGS: 00010286
[  129.843167] RAX: 00000000ffffffff RBX: ffff888016741b80 RCX: ffffffff815660f7
[  129.843175] RDX: 0000000000000000 RSI: ffffffff81566100 RDI: ffff888016741f7c
[  129.843182] RBP: ffff888016741b80 R08: 0000000000000000 R09: fffffbfff0ba7040
[  129.843189] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888016741b80
[  129.843196] R13: 0000000000000001 R14: ffffffff85c0d4c0 R15: ffff88801fef0ca0
[  129.844246]  ? nbcon_cpu_emergency_exit+0x117/0x1c0
[  129.844419]  ? nbcon_cpu_emergency_exit+0x120/0x1c0
[  129.845576]  __wait_on_freeing_inode+0x10f/0x350
[  129.845873]  ? __pfx___wait_on_freeing_inode+0x10/0x10
[  129.846536]  ? __pfx_var_wake_function+0x10/0x10
[  129.847380]  ? lock_is_held_type+0x9e/0x120
[  129.848117]  insert_inode_locked+0x25f/0x890
[  129.849366]  __ext4_new_inode+0x223d/0x4cd0
[  129.851496]  ? __pfx___ext4_new_inode+0x10/0x10
[  129.852333]  ? __pfx___dquot_initialize+0x10/0x10
[  129.852701]  ? __pfx_avc_has_perm+0x10/0x10
[  129.854123]  ext4_symlink+0x623/0xb40
[  129.856037]  ? __pfx_ext4_symlink+0x10/0x10
[  129.856687]  ? security_inode_permission+0x72/0xe0
[  129.857905]  vfs_symlink+0x44b/0x840
[  129.858889]  filename_symlinkat+0x158/0x440
[  129.859674]  ? __pfx_filename_symlinkat+0x10/0x10
[  129.860033]  ? strncpy_from_user+0x21b/0x2f0
[  129.861540]  __x64_sys_symlink+0x82/0x110
[  129.861937]  do_syscall_64+0xbf/0x420
[  129.862449]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.862556] RIP: 0033:0x7f1ed5c2d427
[  129.862627] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 58 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  129.862638] RSP: 002b:00007ffc88042db8 EFLAGS: 00000206 ORIG_RAX: 0000000000000058
[  129.862649] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1ed5c2d427
[  129.862656] RDX: 00007ffc88042e93 RSI: 00007f1ed5c8802f RDI: 00007ffc88042e80
[  129.862664] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007ffc88042c50
[  129.862671] R10: 00007ffc88042b07 R11: 0000000000000206 R12: 0000000000000001
[  129.862678] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc88042e80
[  129.864685]  </TASK>
[  129.864690] irq event stamp: 429
[  129.864694] hardirqs last  enabled at (429): [<ffffffff84d19a7c>] _raw_spin_unlock_irqrestore+0x2c/0x50
[  129.864778] hardirqs last disabled at (428): [<ffffffff84d197d3>] _raw_spin_lock_irqsave+0x53/0x60
[  129.864859] softirqs last  enabled at (424): [<ffffffff812cda79>] kernel_fpu_end+0x59/0x70
[  129.864938] softirqs last disabled at (422): [<ffffffff812ce94b>] kernel_fpu_begin_mask+0x1bb/0x300
[  129.865028] ---[ end trace 0000000000000000 ]---
[  129.865415]  __wait_on_freeing_inode+0x10f/0x350
[  129.865724]  ? __pfx___wait_on_freeing_inode+0x10/0x10
[  129.866408]  ? __pfx_var_wake_function+0x10/0x10
[  129.867220]  ? lock_is_held_type+0x9e/0x120
[  129.867989]  insert_inode_locked+0x25f/0x890
[  129.872776]  __ext4_new_inode+0x223d/0x4cd0
[  129.874956]  ? __pfx___ext4_new_inode+0x10/0x10
[  129.875853]  ? __pfx___dquot_initialize+0x10/0x10
[  129.876210]  ? __pfx_avc_has_perm+0x10/0x10
[  129.877731]  ext4_symlink+0x623/0xb40
[  129.879730]  ? __pfx_ext4_symlink+0x10/0x10
[  129.880438]  ? security_inode_permission+0x72/0xe0
[  129.881695]  vfs_symlink+0x44b/0x840
[  129.882818]  filename_symlinkat+0x158/0x440
[  129.883645]  ? __pfx_filename_symlinkat+0x10/0x10
[  129.884000]  ? strncpy_from_user+0x21b/0x2f0
[  129.885542]  __x64_sys_symlink+0x82/0x110
[  129.885924]  do_syscall_64+0xbf/0x420
[  129.886486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.886595] RIP: 0033:0x7f1ed5c2d427
[  129.886669] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 58 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  129.886680] RSP: 002b:00007ffc88042db8 EFLAGS: 00000206 ORIG_RAX: 0000000000000058
[  129.886693] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1ed5c2d427
[  129.886701] RDX: 00007ffc88042e93 RSI: 00007f1ed5c8802f RDI: 00007ffc88042e80
[  129.886709] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007ffc88042c50
[  129.886716] R10: 00007ffc88042b07 R11: 0000000000000206 R12: 0000000000000001
[  129.886724] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc88042e80
[  129.888891]  </TASK>
[  129.888898] irq event stamp: 429
[  129.888902] hardirqs last  enabled at (429): [<ffffffff84d19a7c>] _raw_spin_unlock_irqrestore+0x2c/0x50
[  129.888984] hardirqs last disabled at (428): [<ffffffff84d197d3>] _raw_spin_lock_irqsave+0x53/0x60
[  129.889064] softirqs last  enabled at (424): [<ffffffff812cda79>] kernel_fpu_end+0x59/0x70
[  129.889142] softirqs last disabled at (422): [<ffffffff812ce94b>] kernel_fpu_begin_mask+0x1bb/0x300
[  129.889220] ---[ end trace 0000000000000000 ]---

VM DIAGNOSIS:
15:39:37  Registers:
info registers vcpu 0
RAX=ffff8880e5342000 RBX=0000000000000000 RCX=ffffffff84cedb57 RDX=ffffed100d9c63eb
RSI=0000000000000004 RDI=ffffffff814d54a0 RBP=dffffc0000000000 RSP=ffffffff85c07e00
R8 =0000000000000000 R9 =ffffed100d9c63ea R10=ffff88806ce31f53 R11=0000000000000294
R12=ffffffff8666e850 R13=1ffffffff0b80fc7 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff84cec55e RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e5342000 00000000 00000000
LDT=0000 fffffe6d00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb2cd99dd70 CR3=000000000db51000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f854a6c87c000007f854a6c87c8
XMM02=00007f854a6c87e000007f854a6c87c0 XMM03=00007f854a6c87c800007f854a6c87c0
XMM04=6a005039759496d067d6f6cef5aa769c XMM05=759b42ca4a8e7c04d5759f8f989c8732
XMM06=1b7f9ee45c553724dd101232ecde2172 XMM07=9d63df78b6ee488f6d6d17fcbef5eb9c
XMM08=7ed6eb0efaca06f81927509cc65c3e52 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff86aee65c RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000001 RBP=ffff88800fa37a38 RSP=ffff88800fa37970
R8 =ffffffff86aee660 R9 =0000000000000000 R10=000000000003d20b R11=0000000000025090
R12=ffff88800fa37a40 R13=ffff88800fa37a28 R14=0000000000000005 R15=ffff88800fa379e0
RIP=ffffffff8135f9f9 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fdd1a2bf8c0 00000000 00000000
GS =0000 ffff8880e5442000 00000000 00000000
LDT=0000 fffffe4000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb2cd9c84c8 CR3=000000000d06f000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffff0000000000000000
XMM02=00000000736563697665642f7379732f XMM03=00000000000000006c6175747269762f
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055d0fa67f500000055d0fa6ea3e0
XMM06=000000000000000000000004ffffffff XMM07=00000000000000000000000000000000
XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000