Warning: Permanently added '[localhost]:51123' (ECDSA) to the list of known hosts.
2023/02/27 09:47:22 fuzzer started
2023/02/27 09:47:22 dialing manager at localhost:41417
syzkaller login: [   35.059695] cgroup: Unknown subsys name 'net'
[   35.122968] cgroup: Unknown subsys name 'rlimit'
2023/02/27 09:47:36 syscalls: 2217
2023/02/27 09:47:36 code coverage: enabled
2023/02/27 09:47:36 comparison tracing: enabled
2023/02/27 09:47:36 extra coverage: enabled
2023/02/27 09:47:36 setuid sandbox: enabled
2023/02/27 09:47:36 namespace sandbox: enabled
2023/02/27 09:47:36 Android sandbox: enabled
2023/02/27 09:47:36 fault injection: enabled
2023/02/27 09:47:36 leak checking: enabled
2023/02/27 09:47:36 net packet injection: enabled
2023/02/27 09:47:36 net device setup: enabled
2023/02/27 09:47:36 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2023/02/27 09:47:36 devlink PCI setup: PCI device 0000:00:10.0 is not available
2023/02/27 09:47:36 USB emulation: enabled
2023/02/27 09:47:36 hci packet injection: enabled
2023/02/27 09:47:36 wifi device emulation: enabled
2023/02/27 09:47:36 802.15.4 emulation: enabled
2023/02/27 09:47:36 fetching corpus: 50, signal 36011/37851 (executing program)
2023/02/27 09:47:36 fetching corpus: 100, signal 54653/58166 (executing program)
2023/02/27 09:47:36 fetching corpus: 150, signal 63043/68203 (executing program)
2023/02/27 09:47:36 fetching corpus: 200, signal 71788/78480 (executing program)
2023/02/27 09:47:36 fetching corpus: 250, signal 81304/89442 (executing program)
2023/02/27 09:47:37 fetching corpus: 300, signal 85880/95480 (executing program)
2023/02/27 09:47:37 fetching corpus: 350, signal 91719/102686 (executing program)
2023/02/27 09:47:37 fetching corpus: 400, signal 95737/108124 (executing program)
2023/02/27 09:47:37 fetching corpus: 450, signal 101420/115118 (executing program)
2023/02/27 09:47:37 fetching corpus: 500, signal 107367/122303 (executing program)
2023/02/27 09:47:37 fetching corpus: 550, signal 113596/129707 (executing program)
2023/02/27 09:47:37 fetching corpus: 600, signal 116175/133596 (executing program)
2023/02/27 09:47:37 fetching corpus: 650, signal 119641/138316 (executing program)
2023/02/27 09:47:37 fetching corpus: 700, signal 122920/142828 (executing program)
2023/02/27 09:47:38 fetching corpus: 750, signal 125486/146666 (executing program)
2023/02/27 09:47:38 fetching corpus: 800, signal 128349/150719 (executing program)
2023/02/27 09:47:38 fetching corpus: 850, signal 131201/154743 (executing program)
2023/02/27 09:47:38 fetching corpus: 900, signal 134960/159577 (executing program)
2023/02/27 09:47:38 fetching corpus: 950, signal 137065/162889 (executing program)
2023/02/27 09:47:38 fetching corpus: 1000, signal 139676/166568 (executing program)
2023/02/27 09:47:38 fetching corpus: 1050, signal 142014/170017 (executing program)
2023/02/27 09:47:38 fetching corpus: 1100, signal 144211/173296 (executing program)
2023/02/27 09:47:38 fetching corpus: 1150, signal 146685/176792 (executing program)
2023/02/27 09:47:39 fetching corpus: 1200, signal 148581/179803 (executing program)
2023/02/27 09:47:39 fetching corpus: 1250, signal 151536/183708 (executing program)
2023/02/27 09:47:39 fetching corpus: 1300, signal 154296/187392 (executing program)
2023/02/27 09:47:39 fetching corpus: 1350, signal 156481/190590 (executing program)
2023/02/27 09:47:39 fetching corpus: 1400, signal 158450/193519 (executing program)
2023/02/27 09:47:39 fetching corpus: 1450, signal 159997/196079 (executing program)
2023/02/27 09:47:39 fetching corpus: 1500, signal 161736/198838 (executing program)
2023/02/27 09:47:39 fetching corpus: 1550, signal 163062/201184 (executing program)
2023/02/27 09:47:39 fetching corpus: 1600, signal 164527/203676 (executing program)
2023/02/27 09:47:39 fetching corpus: 1650, signal 166424/206440 (executing program)
2023/02/27 09:47:40 fetching corpus: 1700, signal 167938/208950 (executing program)
2023/02/27 09:47:40 fetching corpus: 1750, signal 169886/211772 (executing program)
2023/02/27 09:47:40 fetching corpus: 1800, signal 171631/214422 (executing program)
2023/02/27 09:47:40 fetching corpus: 1850, signal 173123/216822 (executing program)
2023/02/27 09:47:40 fetching corpus: 1900, signal 174752/219329 (executing program)
2023/02/27 09:47:40 fetching corpus: 1950, signal 176167/221691 (executing program)
2023/02/27 09:47:40 fetching corpus: 2000, signal 177992/224373 (executing program)
2023/02/27 09:47:40 fetching corpus: 2050, signal 179699/226965 (executing program)
2023/02/27 09:47:40 fetching corpus: 2100, signal 180789/229028 (executing program)
2023/02/27 09:47:41 fetching corpus: 2150, signal 182368/231426 (executing program)
2023/02/27 09:47:41 fetching corpus: 2200, signal 183801/233715 (executing program)
2023/02/27 09:47:41 fetching corpus: 2250, signal 185800/236437 (executing program)
2023/02/27 09:47:41 fetching corpus: 2300, signal 186772/238375 (executing program)
2023/02/27 09:47:41 fetching corpus: 2350, signal 188288/240647 (executing program)
2023/02/27 09:47:41 fetching corpus: 2400, signal 189201/242465 (executing program)
2023/02/27 09:47:41 fetching corpus: 2450, signal 190475/244578 (executing program)
2023/02/27 09:47:41 fetching corpus: 2500, signal 191470/246417 (executing program)
2023/02/27 09:47:42 fetching corpus: 2550, signal 193001/248681 (executing program)
2023/02/27 09:47:42 fetching corpus: 2600, signal 194053/250558 (executing program)
2023/02/27 09:47:42 fetching corpus: 2650, signal 195258/252587 (executing program)
2023/02/27 09:47:42 fetching corpus: 2700, signal 197080/254987 (executing program)
2023/02/27 09:47:42 fetching corpus: 2750, signal 198256/256945 (executing program)
2023/02/27 09:47:42 fetching corpus: 2800, signal 199330/258804 (executing program)
2023/02/27 09:47:42 fetching corpus: 2850, signal 200537/260730 (executing program)
2023/02/27 09:47:42 fetching corpus: 2900, signal 201559/262533 (executing program)
2023/02/27 09:47:42 fetching corpus: 2950, signal 202909/264557 (executing program)
2023/02/27 09:47:43 fetching corpus: 3000, signal 203838/266306 (executing program)
2023/02/27 09:47:43 fetching corpus: 3050, signal 205260/268374 (executing program)
2023/02/27 09:47:43 fetching corpus: 3100, signal 207166/270764 (executing program)
2023/02/27 09:47:43 fetching corpus: 3150, signal 208003/272393 (executing program)
2023/02/27 09:47:43 fetching corpus: 3200, signal 208730/273977 (executing program)
2023/02/27 09:47:43 fetching corpus: 3250, signal 209578/275580 (executing program)
2023/02/27 09:47:43 fetching corpus: 3300, signal 210401/277142 (executing program)
2023/02/27 09:47:43 fetching corpus: 3350, signal 211757/279097 (executing program)
2023/02/27 09:47:43 fetching corpus: 3400, signal 212549/280621 (executing program)
2023/02/27 09:47:44 fetching corpus: 3450, signal 213334/282126 (executing program)
2023/02/27 09:47:44 fetching corpus: 3500, signal 214259/283802 (executing program)
2023/02/27 09:47:44 fetching corpus: 3550, signal 215030/285346 (executing program)
2023/02/27 09:47:44 fetching corpus: 3600, signal 215664/286767 (executing program)
2023/02/27 09:47:44 fetching corpus: 3650, signal 216222/288136 (executing program)
2023/02/27 09:47:44 fetching corpus: 3700, signal 217151/289726 (executing program)
2023/02/27 09:47:44 fetching corpus: 3750, signal 217853/291126 (executing program)
2023/02/27 09:47:44 fetching corpus: 3800, signal 218643/292602 (executing program)
2023/02/27 09:47:44 fetching corpus: 3850, signal 219511/294153 (executing program)
2023/02/27 09:47:45 fetching corpus: 3900, signal 220277/295605 (executing program)
2023/02/27 09:47:45 fetching corpus: 3950, signal 220930/297017 (executing program)
2023/02/27 09:47:45 fetching corpus: 4000, signal 222039/298699 (executing program)
2023/02/27 09:47:45 fetching corpus: 4050, signal 222657/300034 (executing program)
2023/02/27 09:47:45 fetching corpus: 4100, signal 224203/301962 (executing program)
2023/02/27 09:47:45 fetching corpus: 4150, signal 224921/303345 (executing program)
2023/02/27 09:47:45 fetching corpus: 4200, signal 225614/304749 (executing program)
2023/02/27 09:47:45 fetching corpus: 4250, signal 226552/306201 (executing program)
2023/02/27 09:47:45 fetching corpus: 4300, signal 227252/307524 (executing program)
2023/02/27 09:47:46 fetching corpus: 4350, signal 227865/308791 (executing program)
2023/02/27 09:47:46 fetching corpus: 4400, signal 228436/310015 (executing program)
2023/02/27 09:47:46 fetching corpus: 4450, signal 229257/311393 (executing program)
2023/02/27 09:47:46 fetching corpus: 4500, signal 229935/312693 (executing program)
2023/02/27 09:47:46 fetching corpus: 4550, signal 230793/314111 (executing program)
2023/02/27 09:47:46 fetching corpus: 4600, signal 231455/315383 (executing program)
2023/02/27 09:47:46 fetching corpus: 4650, signal 232236/316754 (executing program)
2023/02/27 09:47:46 fetching corpus: 4700, signal 232900/318033 (executing program)
2023/02/27 09:47:46 fetching corpus: 4750, signal 233573/319288 (executing program)
2023/02/27 09:47:46 fetching corpus: 4800, signal 234237/320564 (executing program)
2023/02/27 09:47:47 fetching corpus: 4850, signal 234687/321729 (executing program)
2023/02/27 09:47:47 fetching corpus: 4900, signal 235325/322989 (executing program)
2023/02/27 09:47:47 fetching corpus: 4950, signal 236019/324307 (executing program)
2023/02/27 09:47:47 fetching corpus: 5000, signal 237037/325732 (executing program)
2023/02/27 09:47:47 fetching corpus: 5050, signal 237516/326926 (executing program)
2023/02/27 09:47:47 fetching corpus: 5100, signal 238197/328192 (executing program)
2023/02/27 09:47:47 fetching corpus: 5150, signal 239390/329657 (executing program)
2023/02/27 09:47:47 fetching corpus: 5200, signal 239876/330754 (executing program)
2023/02/27 09:47:48 fetching corpus: 5250, signal 240478/331942 (executing program)
2023/02/27 09:47:48 fetching corpus: 5300, signal 241185/333159 (executing program)
2023/02/27 09:47:48 fetching corpus: 5350, signal 241773/334300 (executing program)
2023/02/27 09:47:48 fetching corpus: 5400, signal 242471/335531 (executing program)
2023/02/27 09:47:48 fetching corpus: 5450, signal 242894/336570 (executing program)
2023/02/27 09:47:48 fetching corpus: 5500, signal 243629/337818 (executing program)
2023/02/27 09:47:48 fetching corpus: 5550, signal 244243/338971 (executing program)
2023/02/27 09:47:48 fetching corpus: 5600, signal 244886/340127 (executing program)
2023/02/27 09:47:48 fetching corpus: 5650, signal 245469/341260 (executing program)
2023/02/27 09:47:48 fetching corpus: 5700, signal 245873/342281 (executing program)
2023/02/27 09:47:49 fetching corpus: 5750, signal 246341/343354 (executing program)
2023/02/27 09:47:49 fetching corpus: 5800, signal 247245/344610 (executing program)
2023/02/27 09:47:49 fetching corpus: 5850, signal 247711/345663 (executing program)
2023/02/27 09:47:49 fetching corpus: 5900, signal 248364/346800 (executing program)
2023/02/27 09:47:49 fetching corpus: 5950, signal 248925/347897 (executing program)
2023/02/27 09:47:49 fetching corpus: 6000, signal 249535/348978 (executing program)
2023/02/27 09:47:49 fetching corpus: 6050, signal 249892/349962 (executing program)
2023/02/27 09:47:49 fetching corpus: 6100, signal 250445/351023 (executing program)
2023/02/27 09:47:49 fetching corpus: 6150, signal 250853/352012 (executing program)
2023/02/27 09:47:50 fetching corpus: 6200, signal 251566/353153 (executing program)
2023/02/27 09:47:50 fetching corpus: 6250, signal 252148/354210 (executing program)
2023/02/27 09:47:50 fetching corpus: 6300, signal 252856/355303 (executing program)
2023/02/27 09:47:50 fetching corpus: 6350, signal 253357/356322 (executing program)
2023/02/27 09:47:50 fetching corpus: 6400, signal 253750/357282 (executing program)
2023/02/27 09:47:50 fetching corpus: 6450, signal 254319/358314 (executing program)
2023/02/27 09:47:50 fetching corpus: 6500, signal 254782/359264 (executing program)
2023/02/27 09:47:50 fetching corpus: 6550, signal 255144/360187 (executing program)
2023/02/27 09:47:50 fetching corpus: 6600, signal 255751/361232 (executing program)
2023/02/27 09:47:50 fetching corpus: 6650, signal 256322/362196 (executing program)
2023/02/27 09:47:51 fetching corpus: 6700, signal 256958/363199 (executing program)
2023/02/27 09:47:51 fetching corpus: 6750, signal 257364/364133 (executing program)
2023/02/27 09:47:51 fetching corpus: 6800, signal 258061/365137 (executing program)
2023/02/27 09:47:51 fetching corpus: 6850, signal 258464/366096 (executing program)
2023/02/27 09:47:51 fetching corpus: 6900, signal 258938/367040 (executing program)
2023/02/27 09:47:51 fetching corpus: 6950, signal 259483/368033 (executing program)
2023/02/27 09:47:51 fetching corpus: 7000, signal 259743/368929 (executing program)
2023/02/27 09:47:51 fetching corpus: 7050, signal 260280/369940 (executing program)
2023/02/27 09:47:51 fetching corpus: 7100, signal 260795/370882 (executing program)
2023/02/27 09:47:52 fetching corpus: 7150, signal 261270/371784 (executing program)
2023/02/27 09:47:52 fetching corpus: 7200, signal 261977/372763 (executing program)
2023/02/27 09:47:52 fetching corpus: 7250, signal 262435/373636 (executing program)
2023/02/27 09:47:52 fetching corpus: 7300, signal 262997/374570 (executing program)
2023/02/27 09:47:52 fetching corpus: 7350, signal 263435/375479 (executing program)
2023/02/27 09:47:52 fetching corpus: 7400, signal 263973/376397 (executing program)
2023/02/27 09:47:52 fetching corpus: 7450, signal 264311/377272 (executing program)
2023/02/27 09:47:52 fetching corpus: 7500, signal 264902/378224 (executing program)
2023/02/27 09:47:52 fetching corpus: 7550, signal 265434/379147 (executing program)
2023/02/27 09:47:53 fetching corpus: 7600, signal 265909/380024 (executing program)
2023/02/27 09:47:53 fetching corpus: 7650, signal 266254/380901 (executing program)
2023/02/27 09:47:53 fetching corpus: 7700, signal 266768/381783 (executing program)
2023/02/27 09:47:53 fetching corpus: 7750, signal 267199/382646 (executing program)
2023/02/27 09:47:53 fetching corpus: 7800, signal 267648/383516 (executing program)
2023/02/27 09:47:53 fetching corpus: 7850, signal 267977/384337 (executing program)
2023/02/27 09:47:53 fetching corpus: 7900, signal 268424/385192 (executing program)
2023/02/27 09:47:53 fetching corpus: 7950, signal 268828/386049 (executing program)
2023/02/27 09:47:53 fetching corpus: 8000, signal 269200/386894 (executing program)
2023/02/27 09:47:54 fetching corpus: 8050, signal 269511/387709 (executing program)
2023/02/27 09:47:54 fetching corpus: 8100, signal 269977/388571 (executing program)
2023/02/27 09:47:54 fetching corpus: 8150, signal 270252/389338 (executing program)
2023/02/27 09:47:54 fetching corpus: 8200, signal 270653/390196 (executing program)
2023/02/27 09:47:54 fetching corpus: 8250, signal 271048/390992 (executing program)
2023/02/27 09:47:54 fetching corpus: 8300, signal 271485/391828 (executing program)
2023/02/27 09:47:54 fetching corpus: 8350, signal 271884/392622 (executing program)
2023/02/27 09:47:54 fetching corpus: 8400, signal 272231/393379 (executing program)
2023/02/27 09:47:54 fetching corpus: 8450, signal 272628/394153 (executing program)
2023/02/27 09:47:55 fetching corpus: 8500, signal 273095/394978 (executing program)
2023/02/27 09:47:55 fetching corpus: 8550, signal 273611/395776 (executing program)
2023/02/27 09:47:55 fetching corpus: 8600, signal 274000/396543 (executing program)
2023/02/27 09:47:55 fetching corpus: 8650, signal 274531/397372 (executing program)
2023/02/27 09:47:55 fetching corpus: 8700, signal 275059/398192 (executing program)
2023/02/27 09:47:55 fetching corpus: 8750, signal 275559/398978 (executing program)
2023/02/27 09:47:55 fetching corpus: 8800, signal 275797/399702 (executing program)
2023/02/27 09:47:55 fetching corpus: 8850, signal 276173/400466 (executing program)
2023/02/27 09:47:55 fetching corpus: 8900, signal 276597/401233 (executing program)
2023/02/27 09:47:56 fetching corpus: 8950, signal 277069/402007 (executing program)
2023/02/27 09:47:56 fetching corpus: 9000, signal 277365/402753 (executing program)
2023/02/27 09:47:56 fetching corpus: 9050, signal 277701/403475 (executing program)
2023/02/27 09:47:56 fetching corpus: 9100, signal 278019/404206 (executing program)
2023/02/27 09:47:56 fetching corpus: 9150, signal 278297/404948 (executing program)
2023/02/27 09:47:56 fetching corpus: 9200, signal 278703/405665 (executing program)
2023/02/27 09:47:56 fetching corpus: 9250, signal 279008/406394 (executing program)
2023/02/27 09:47:56 fetching corpus: 9300, signal 279418/407155 (executing program)
2023/02/27 09:47:56 fetching corpus: 9350, signal 279789/407905 (executing program)
2023/02/27 09:47:56 fetching corpus: 9400, signal 280167/408657 (executing program)
2023/02/27 09:47:57 fetching corpus: 9450, signal 280512/409394 (executing program)
2023/02/27 09:47:57 fetching corpus: 9500, signal 280845/410122 (executing program)
2023/02/27 09:47:57 fetching corpus: 9550, signal 281241/410805 (executing program)
2023/02/27 09:47:57 fetching corpus: 9600, signal 281793/411561 (executing program)
2023/02/27 09:47:57 fetching corpus: 9650, signal 282101/412235 (executing program)
2023/02/27 09:47:57 fetching corpus: 9700, signal 282421/412918 (executing program)
2023/02/27 09:47:57 fetching corpus: 9750, signal 282858/413582 (executing program)
2023/02/27 09:47:57 fetching corpus: 9800, signal 283189/414292 (executing program)
2023/02/27 09:47:57 fetching corpus: 9850, signal 283491/414983 (executing program)
2023/02/27 09:47:58 fetching corpus: 9900, signal 283860/415694 (executing program)
2023/02/27 09:47:58 fetching corpus: 9950, signal 284222/416350 (executing program)
2023/02/27 09:47:58 fetching corpus: 10000, signal 284498/416999 (executing program)
2023/02/27 09:47:58 fetching corpus: 10050, signal 284954/417689 (executing program)
2023/02/27 09:47:58 fetching corpus: 10100, signal 285320/418349 (executing program)
2023/02/27 09:47:58 fetching corpus: 10150, signal 285711/419028 (executing program)
2023/02/27 09:47:58 fetching corpus: 10200, signal 285974/419711 (executing program)
2023/02/27 09:47:58 fetching corpus: 10250, signal 286364/420358 (executing program)
2023/02/27 09:47:58 fetching corpus: 10300, signal 286669/421015 (executing program)
2023/02/27 09:47:58 fetching corpus: 10350, signal 286953/421669 (executing program)
2023/02/27 09:47:59 fetching corpus: 10400, signal 287214/422295 (executing program)
2023/02/27 09:47:59 fetching corpus: 10450, signal 287568/422976 (executing program)
2023/02/27 09:47:59 fetching corpus: 10500, signal 287969/423606 (executing program)
2023/02/27 09:47:59 fetching corpus: 10550, signal 288349/424271 (executing program)
2023/02/27 09:47:59 fetching corpus: 10600, signal 288545/424953 (executing program)
2023/02/27 09:47:59 fetching corpus: 10650, signal 288821/425372 (executing program)
2023/02/27 09:47:59 fetching corpus: 10700, signal 289256/425372 (executing program)
2023/02/27 09:47:59 fetching corpus: 10750, signal 289605/425372 (executing program)
2023/02/27 09:47:59 fetching corpus: 10800, signal 290017/425372 (executing program)
2023/02/27 09:48:00 fetching corpus: 10850, signal 290475/425372 (executing program)
2023/02/27 09:48:00 fetching corpus: 10900, signal 290740/425373 (executing program)
2023/02/27 09:48:00 fetching corpus: 10950, signal 291154/425373 (executing program)
2023/02/27 09:48:00 fetching corpus: 11000, signal 291490/425373 (executing program)
2023/02/27 09:48:00 fetching corpus: 11050, signal 291845/425373 (executing program)
2023/02/27 09:48:00 fetching corpus: 11100, signal 292160/425373 (executing program)
2023/02/27 09:48:00 fetching corpus: 11150, signal 292488/425373 (executing program)
2023/02/27 09:48:00 fetching corpus: 11200, signal 292761/425373 (executing program)
2023/02/27 09:48:00 fetching corpus: 11250, signal 293054/425373 (executing program)
2023/02/27 09:48:01 fetching corpus: 11300, signal 293354/425373 (executing program)
2023/02/27 09:48:01 fetching corpus: 11350, signal 293622/425373 (executing program)
2023/02/27 09:48:01 fetching corpus: 11400, signal 293984/425373 (executing program)
2023/02/27 09:48:01 fetching corpus: 11450, signal 294258/425373 (executing program)
2023/02/27 09:48:01 fetching corpus: 11500, signal 294520/425373 (executing program)
2023/02/27 09:48:01 fetching corpus: 11550, signal 294884/425373 (executing program)
2023/02/27 09:48:01 fetching corpus: 11600, signal 295166/425373 (executing program)
2023/02/27 09:48:01 fetching corpus: 11650, signal 295520/425373 (executing program)
2023/02/27 09:48:01 fetching corpus: 11700, signal 295787/425373 (executing program)
2023/02/27 09:48:01 fetching corpus: 11750, signal 296152/425373 (executing program)
2023/02/27 09:48:02 fetching corpus: 11800, signal 296448/425373 (executing program)
2023/02/27 09:48:02 fetching corpus: 11850, signal 296842/425373 (executing program)
2023/02/27 09:48:02 fetching corpus: 11900, signal 297193/425373 (executing program)
2023/02/27 09:48:02 fetching corpus: 11950, signal 297501/425373 (executing program)
2023/02/27 09:48:02 fetching corpus: 12000, signal 297762/425373 (executing program)
2023/02/27 09:48:02 fetching corpus: 12050, signal 297976/425373 (executing program)
2023/02/27 09:48:02 fetching corpus: 12100, signal 298387/425373 (executing program)
2023/02/27 09:48:02 fetching corpus: 12150, signal 298641/425373 (executing program)
2023/02/27 09:48:02 fetching corpus: 12200, signal 298958/425373 (executing program)
2023/02/27 09:48:03 fetching corpus: 12250, signal 299161/425373 (executing program)
2023/02/27 09:48:03 fetching corpus: 12300, signal 299375/425373 (executing program)
2023/02/27 09:48:03 fetching corpus: 12350, signal 299696/425373 (executing program)
2023/02/27 09:48:03 fetching corpus: 12400, signal 299966/425373 (executing program)
2023/02/27 09:48:03 fetching corpus: 12450, signal 300345/425373 (executing program)
2023/02/27 09:48:03 fetching corpus: 12500, signal 300683/425373 (executing program)
2023/02/27 09:48:03 fetching corpus: 12550, signal 300936/425373 (executing program)
2023/02/27 09:48:03 fetching corpus: 12600, signal 301203/425373 (executing program)
2023/02/27 09:48:03 fetching corpus: 12650, signal 301516/425373 (executing program)
2023/02/27 09:48:04 fetching corpus: 12700, signal 301873/425373 (executing program)
2023/02/27 09:48:04 fetching corpus: 12750, signal 302148/425373 (executing program)
2023/02/27 09:48:04 fetching corpus: 12800, signal 302446/425373 (executing program)
2023/02/27 09:48:04 fetching corpus: 12850, signal 302648/425373 (executing program)
2023/02/27 09:48:04 fetching corpus: 12900, signal 302939/425379 (executing program)
2023/02/27 09:48:04 fetching corpus: 12950, signal 303346/425379 (executing program)
2023/02/27 09:48:04 fetching corpus: 13000, signal 303634/425379 (executing program)
2023/02/27 09:48:04 fetching corpus: 13050, signal 303858/425379 (executing program)
2023/02/27 09:48:04 fetching corpus: 13100, signal 304088/425379 (executing program)
2023/02/27 09:48:05 fetching corpus: 13150, signal 304422/425379 (executing program)
2023/02/27 09:48:05 fetching corpus: 13200, signal 304722/425379 (executing program)
2023/02/27 09:48:05 fetching corpus: 13250, signal 305033/425379 (executing program)
2023/02/27 09:48:05 fetching corpus: 13300, signal 305285/425379 (executing program)
2023/02/27 09:48:05 fetching corpus: 13350, signal 305602/425379 (executing program)
2023/02/27 09:48:05 fetching corpus: 13400, signal 305783/425379 (executing program)
2023/02/27 09:48:05 fetching corpus: 13450, signal 306076/425379 (executing program)
2023/02/27 09:48:06 fetching corpus: 13500, signal 306351/425379 (executing program)
2023/02/27 09:48:06 fetching corpus: 13550, signal 306635/425379 (executing program)
2023/02/27 09:48:06 fetching corpus: 13600, signal 306895/425379 (executing program)
2023/02/27 09:48:06 fetching corpus: 13650, signal 307163/425379 (executing program)
2023/02/27 09:48:06 fetching corpus: 13700, signal 307496/425379 (executing program)
2023/02/27 09:48:06 fetching corpus: 13750, signal 307817/425379 (executing program)
2023/02/27 09:48:06 fetching corpus: 13800, signal 308225/425379 (executing program)
2023/02/27 09:48:06 fetching corpus: 13850, signal 308491/425379 (executing program)
2023/02/27 09:48:07 fetching corpus: 13900, signal 308804/425379 (executing program)
2023/02/27 09:48:07 fetching corpus: 13950, signal 309070/425379 (executing program)
2023/02/27 09:48:07 fetching corpus: 14000, signal 309310/425379 (executing program)
2023/02/27 09:48:07 fetching corpus: 14050, signal 309508/425379 (executing program)
2023/02/27 09:48:07 fetching corpus: 14100, signal 309660/425379 (executing program)
2023/02/27 09:48:07 fetching corpus: 14150, signal 309995/425379 (executing program)
2023/02/27 09:48:07 fetching corpus: 14200, signal 310246/425379 (executing program)
2023/02/27 09:48:07 fetching corpus: 14250, signal 310558/425379 (executing program)
2023/02/27 09:48:07 fetching corpus: 14300, signal 310833/425379 (executing program)
2023/02/27 09:48:08 fetching corpus: 14350, signal 311090/425379 (executing program)
2023/02/27 09:48:08 fetching corpus: 14400, signal 311358/425379 (executing program)
2023/02/27 09:48:08 fetching corpus: 14450, signal 311595/425379 (executing program)
2023/02/27 09:48:08 fetching corpus: 14500, signal 311885/425379 (executing program)
2023/02/27 09:48:08 fetching corpus: 14550, signal 312114/425379 (executing program)
2023/02/27 09:48:08 fetching corpus: 14600, signal 312325/425379 (executing program)
2023/02/27 09:48:08 fetching corpus: 14650, signal 312571/425379 (executing program)
2023/02/27 09:48:08 fetching corpus: 14700, signal 312814/425379 (executing program)
2023/02/27 09:48:09 fetching corpus: 14750, signal 313196/425379 (executing program)
2023/02/27 09:48:09 fetching corpus: 14800, signal 313430/425379 (executing program)
2023/02/27 09:48:09 fetching corpus: 14850, signal 313756/425379 (executing program)
2023/02/27 09:48:09 fetching corpus: 14900, signal 314018/425379 (executing program)
2023/02/27 09:48:09 fetching corpus: 14950, signal 314323/425379 (executing program)
2023/02/27 09:48:09 fetching corpus: 15000, signal 314620/425379 (executing program)
2023/02/27 09:48:09 fetching corpus: 15050, signal 314888/425379 (executing program)
2023/02/27 09:48:09 fetching corpus: 15100, signal 315065/425379 (executing program)
2023/02/27 09:48:09 fetching corpus: 15147, signal 315277/425379 (executing program)
2023/02/27 09:48:09 fetching corpus: 15147, signal 315277/425379 (executing program)
2023/02/27 09:48:12 starting 8 fuzzer processes
09:48:12 executing program 0:
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80000)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000001c0)={'ip6tnl0\x00', &(0x7f0000000140)={'syztnl0\x00', <r1=>0x0, 0x29, 0x20, 0x3, 0x6, 0x67, @loopback, @dev={0xfe, 0x80, '\x00', 0x41}, 0x7800, 0x8000, 0xc2f, 0x4}})
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xd0, 0x0, 0x200, 0x70bd28, 0x25dfdbff, {}, [@HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000080)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000380), 0x80001, 0x0)
sendmsg$NL80211_CMD_DEL_PMKSA(r2, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x3c, 0x0, 0x100, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x36}}}}, [@NL80211_ATTR_PMKID={0x14, 0x55, "b4e7df90c2cd76031d6bf06eb942ab33"}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8004}, 0x240400c1)
r3 = openat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0xc0000, 0xa1a39f2c6106f64d)
r4 = openat(r2, &(0x7f0000000500)='./file0\x00', 0x42000, 0x0)
pwritev(r3, &(0x7f00000006c0)=[{&(0x7f0000000540)="afae3c0babc6b4ecda4b4e66f53ac4e8ee142d9772db4173d5af6b947515af878bb43e0b6212079f0eba8210", 0x2c}, {&(0x7f0000000580)="f4b26f1a73fc2dfebabb4d90dc87a252016c150bf14b0855ab53706f0b81fba95a014bc1f63bfe8dc1956f277ff8a43bdedb99fbf52c0f32478535659804f7ab71078c5f7983c5cd286d96dc85f5b11c158cd3068e47572e42dab4e056d56212ed44845b061ea14db6ac76ed73f8e725a8691fd9d10ce2", 0x77}, {&(0x7f0000000600)="15b1eb83e1e112ca6d8891278b4f2bf641cebf90be061477ac1a83381c6901ca976d3823eb19affecce1d74f429ff9e7bf342b088a23a208e28418fac7186e334367e0cd95722f583b0058feace69f70cb60b2e8f182ec599fbb0a12b819be27e9a9983a900f72a0217113b85274d23b4c7dd54497e665c1d517346c77984506ed82922f078a76244bed205fbb7eefa2a1607c76a4620dee842ae9d827ea59654d11", 0xa2}], 0x3, 0x7ff, 0x0)
mkdirat(r4, &(0x7f0000000700)='./file0\x00', 0x130)
syz_genetlink_get_family_id$devlink(&(0x7f0000000740), r2)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r3, 0xc0189374, &(0x7f00000007c0)={{0x1, 0x1, 0x18, <r5=>r0, {0x1}}, './file1\x00'})
syz_genetlink_get_family_id$fou(&(0x7f0000000780), r5)
getsockname$packet(r4, &(0x7f0000000840)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000880)=0x14)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r2, &(0x7f00000009c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x8000400}, 0xc, &(0x7f0000000980)={&(0x7f00000008c0)={0xac, 0x0, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @broadcast}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @broadcast}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_ADDR={0x54, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast1}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x24}}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @remote}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}]}, 0xac}, 0x1, 0x0, 0x0, 0x48840}, 0x4000040)
sendmsg$NFNL_MSG_ACCT_GET(r5, &(0x7f0000000b40)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a40)={0x84, 0x1, 0x7, 0x101, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x8001}, @NFACCT_FILTER={0x34, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x20}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x80000000}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x800}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x7}, @NFACCT_FILTER_MASK={0x8}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x8}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x84}, 0x1, 0x0, 0x0, 0x8040}, 0x4004030)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000b80), r2)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000bc0)={0x0, 0x0, 0x5, 0x0, '\x00', [{0x6, 0x14c, 0x240000000, 0x1, 0x9, 0x5}, {0x10001, 0x52205277, 0x0, 0x0, 0xffff, 0x200}], ['\x00', '\x00', '\x00', '\x00', '\x00']})
r7 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$AUTOFS_IOC_READY(r7, 0x9360, 0x5)
sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000f40)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000e40)={0x88, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x40040}, 0x1)

09:48:12 executing program 1:
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3}, 0x5)
lsetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@random={'os2.', '\x00'}, &(0x7f00000000c0)='\xc4^@\xfb:*\x00', 0x7, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1, 0x0, 0x65000000, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x81)
r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2, 0x30, 0xffffffffffffffff, 0x8000000)
r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r0, 0x0, &(0x7f0000000240)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x3, 0x0, &(0x7f0000000140)="14323fddeaf103fa0218ada6ea55a272fa2886db89e3b5b22c7a0bbbddbe675f3331ca72c671540d2d71b5137b485452949117e675464533b16fafd94ec29a8a7ec538d7e3a13ea0fbad39a15633fc6c4f2a160bc316fbbe3ed8cf8b3d8080c3ac4a3f0695cbcaf216cfe358426ba3ac5173ee045ba458b0410206ed0aeffc0ceb8dba9407646ec8f8e43c92c9534715f4b24b369b9dea85cfdb34a6d9c8d12b3c5c2decf78324535116eaa3ae1362e6af400af6e4486b48a2910fdc20187de82a076900c7b6e86e52019b0dd8e1ca679e574aec070b05c385818b73ee48c759c24281", 0x2, 0x0, 0x0, {0x1, r1}}, 0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000002280)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000280)}, {&(0x7f00000002c0)=""/83, 0x53}, {&(0x7f0000000340)=""/184, 0xb8}, {&(0x7f0000000400)=""/30, 0x1e}, {&(0x7f0000000440)=""/212, 0xd4}, {&(0x7f0000000540)=""/111, 0x6f}, {&(0x7f00000005c0)=""/134, 0x86}, {&(0x7f0000000680)=""/201, 0xc9}, {&(0x7f0000000780)=""/83, 0x53}], 0x9}, 0x1}, {{&(0x7f00000008c0)=@nl=@proc, 0x80, &(0x7f0000001b00)=[{&(0x7f0000000940)=""/99, 0x63}, {&(0x7f00000009c0)=""/4096, 0x1000}, {&(0x7f00000019c0)=""/54, 0x36}, {&(0x7f0000001a00)=""/253, 0xfd}], 0x4, &(0x7f0000001b40)=""/112, 0x70}, 0x1}, {{&(0x7f0000001bc0)=@l2tp6={0xa, 0x0, 0x0, @initdev}, 0x80, &(0x7f00000021c0)=[{&(0x7f0000001c40)=""/17, 0x11}, {&(0x7f0000001c80)}, {&(0x7f0000001cc0)=""/249, 0xf9}, {&(0x7f0000001dc0)=""/86, 0x56}, {&(0x7f0000001e40)=""/193, 0xc1}, {&(0x7f0000001f40)=""/169, 0xa9}, {&(0x7f0000002000)=""/252, 0xfc}, {&(0x7f0000002100)=""/166, 0xa6}], 0x8, &(0x7f0000002240)}, 0x1ff}], 0x3, 0x0, &(0x7f0000002340))
fcntl$setsig(0xffffffffffffffff, 0xa, 0x33)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000002440)=@IORING_OP_READ=@pass_buffer={0x16, 0x2, 0x4007, @fd, 0xde8, &(0x7f0000002380)=""/137, 0x89, 0x3, 0x1, {0x0, r3}}, 0x40)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000000, 0x20010, 0xffffffffffffffff, 0x8000000)
syz_io_uring_submit(r4, 0x0, &(0x7f00000024c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000002480), 0x1, 0x0, 0x1, {0x0, r3}}, 0xff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000002540)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000002600)={&(0x7f0000002500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000025c0)={&(0x7f0000002580)={0x1c, 0x0, 0x200, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x5)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000002640)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff}, './file0\x00'})
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000002680)={{{@in6=@mcast1, @in6=@mcast2, 0x4e23, 0x7, 0x4e22, 0x9, 0xa, 0x80, 0x80, 0x4, 0x0, 0xee00}, {0x10000, 0x2, 0x0, 0x6, 0x3, 0x81, 0x7, 0x6}, {0xdf82, 0xa17, 0x5, 0x500000000000}, 0x1, 0x6e6bc0, 0x0, 0x1}, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4d6, 0x3c}, 0xa, @in6=@empty, 0x3502, 0x2, 0x0, 0x83, 0x3, 0x5a45, 0x4}}, 0xe8)
r7 = openat$random(0xffffffffffffff9c, &(0x7f0000002780), 0x88200, 0x0)
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r7, 0xf507, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r7, 0x40086607, &(0x7f00000027c0)=0x7)

[   84.456852] audit: type=1400 audit(1677491292.300:6): avc:  denied  { execmem } for  pid=259 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
09:48:12 executing program 3:
close(0xffffffffffffffff)
r0 = syz_io_uring_setup(0x611b, &(0x7f0000000000)={0x0, 0x8251, 0x2, 0x2, 0x130}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_FSYNC={0x3, 0xcdebb19cae3a2742, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x6)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x8, 0x80010, r0, 0x10000000)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x100000001, &(0x7f0000000140)=[r0, r0, r0, r0, r0, r0], 0x6, 0x0, 0x1, {0x0, r4}}, 0x4)
syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r4}}, 0x1)
r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200), 0x202000, 0x0)
ioctl$AUTOFS_IOC_CATATONIC(r5, 0x9362, 0x0)
r6 = socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$AUTOFS_DEV_IOCTL_READY(r5, 0xc0189376, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r7=>r6, {0x1}}, './file0\x00'})
r8 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000280), 0x200800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r8, 0xc0189374, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r9=>r5, {0x2}}, './file1\x00'})
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000300)=0x10000000)
timerfd_gettime(r9, &(0x7f0000000340))
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$sock(r10, &(0x7f0000000600)=[{{&(0x7f0000000380)=@l2tp6={0xa, 0x0, 0x6, @empty, 0x5, 0x4}, 0x80, &(0x7f0000000580)=[{&(0x7f0000000400)="b3b88de80698994cf2874c4841eaa3d605f81fed89098fb6d1645f641314f18fb770c7b2bbb96a0de5aa87138a0fc87698bd2a7cc3ac915c1b87bb74fc83e8cc82613e7621cefba88e5f7d0f8a5236441e0bdd6dc6f2c422fe6c1fd43755d6a911f6be6470dc3a91b932369f9320ea53ef7de02ac3f12f52b1b45dee6082296ded0bcc03c14263c60040d401a35c49496c34d2ad6aff4a82e8e96faecd0c25ad", 0xa0}, {&(0x7f00000004c0)="d9e9aba5ced145fb0531cb4e10af67eaebd89c5512c2888ea9a7ebb67a3519669ab2b300cc47a365a71e3bdf15fceae1089190afda52bb3810c928185637095e58ce75ad443fd927a0c86c4df2866ac5b8160e71cb42877cebce55d7ccb9dd02a4a954bdfb25a9c296208d89509d077539f516d136cc5cb1a0187ded03042b3287de2f4f5f4e053c6071b7bc0d4a455ed3e8f5d786a5c150f6408cd9b22a", 0x9e}], 0x2, &(0x7f00000005c0)=[@mark={{0x14, 0x1, 0x24, 0x7fff}}, @timestamping={{0x14, 0x1, 0x25, 0x8001}}], 0x30}}], 0x1, 0x4000080)
r11 = syz_open_dev$vcsu(&(0x7f0000000640), 0x2, 0x10a00)
setsockopt$sock_void(r11, 0x1, 0x36, 0x0, 0x0)

09:48:12 executing program 2:
clone3(&(0x7f0000000400)={0x112000, &(0x7f0000000200), &(0x7f0000000240)=<r0=>0x0, &(0x7f0000000280), {0x40}, &(0x7f00000002c0)=""/134, 0x86, &(0x7f0000000380)=""/60, &(0x7f00000003c0)=[0x0], 0x1}, 0x58)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000480)=<r1=>0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000004c0)=<r2=>0x0)
clone3(&(0x7f0000000540)={0x239098180, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x2d}, &(0x7f00000000c0)=""/241, 0xf1, &(0x7f00000001c0)=""/25, &(0x7f0000000500)=[r0, 0x0, r1, 0xffffffffffffffff, r2], 0x5}, 0x58)
r3 = syz_open_dev$vcsa(&(0x7f00000005c0), 0x8, 0x840)
ioctl$sock_inet_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000600))
recvmsg$unix(r3, &(0x7f0000000940)={&(0x7f0000000640), 0x6e, &(0x7f00000007c0)=[{&(0x7f00000006c0)=""/225, 0xe1}], 0x1, &(0x7f0000000800)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {<r4=>0x0}}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff]}}, @rights={{0x10}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x128}, 0x2001)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000980)={<r9=>0x0}, &(0x7f00000009c0)=0xc)
r10 = open$dir(&(0x7f0000000a00)='./file0\x00', 0x0, 0x0)
kcmp(r4, r9, 0x4, r10, r3)
ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000a80)={0x0, @llc={0x1a, 0x309, 0x0, 0x9, 0x3, 0x3, @broadcast}, @xdp={0x2c, 0x3, <r11=>0x0, 0x11}, @generic={0x22, "c2af6e21eab2ccdb9c3318cf2fb3"}, 0xbfa0, 0x0, 0x0, 0x0, 0x3a36, &(0x7f0000000a40)='veth0_virt_wifi\x00', 0x7, 0x55a1, 0x3})
connect$packet(r6, &(0x7f0000000b00)={0x11, 0x2, r11, 0x1, 0x0, 0x6, @random="6743f70dbcf7"}, 0x14)
r12 = openat$zero(0xffffffffffffff9c, &(0x7f0000000b40), 0x40400, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r12, 0x541c, &(0x7f0000000b80))
ioctl$TCSETS(r5, 0x5402, &(0x7f0000000bc0)={0x80000000, 0x101, 0xfffffe00, 0xffff7fff, 0xa, "65a6cc5db7e61fd0cd567c8a9077daae09532e"})
r13 = ioctl$TIOCGPTPEER(r6, 0x5441, 0x1)
ioctl$TIOCL_UNBLANKSCREEN(r13, 0x541c, &(0x7f0000000c00))
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r8, 0xc0189373, &(0x7f0000000c40)={{0x1, 0x1, 0x18, <r14=>0xffffffffffffffff, {0x6}}, './file0\x00'})
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r14, &(0x7f0000000c80)={0x60000014})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000cc0)={'batadv_slave_0\x00'})

09:48:12 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r0, 0x8983, &(0x7f0000000000)={0x1, 'syz_tun\x00', {}, 0x8})
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
connect(r1, &(0x7f0000000080)=@l2={0x1f, 0x7, @none, 0x8, 0x1}, 0x80)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000100)={'raw\x00', 0x3, [{}, {}, {}]}, 0x58)
accept4$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000001c0)=0x14, 0x0)
setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000200)={r2, @initdev={0xac, 0x1e, 0x1, 0x0}, @local}, 0xc)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000240)={@remote, @empty, 0x0, 0x6, [@empty, @rand_addr=0x64010100, @rand_addr=0x64010101, @private=0xa010101, @multicast2, @private=0xa010102]}, 0x28)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0xc0100, 0x0)
ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, &(0x7f00000002c0))
r4 = socket(0x23, 0xa, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000300)={'wlan1\x00'})
setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000340)={r2, 0x1, 0x6, @local}, 0x10)
accept$packet(r3, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000003c0)=0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$IP_SET_OP_VERSION(r5, 0x1, 0x53, &(0x7f0000000400), &(0x7f0000000440)=0x8)
r6 = socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_aout(r6, &(0x7f0000000480)={{0x10b, 0x1f, 0xad, 0x1a8, 0x312, 0x80, 0x182, 0x839}, "6ee1d93fb99da772e99bade9e9fd63f926c80ba9104b97429eae16", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x83b)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000d40), 0x0)

09:48:12 executing program 6:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1, 0x3, &(0x7f0000000200)=[{&(0x7f0000000100)="a7a90c7444c9a9e21fb43eebcb4bc52dece1dca3a40701e9b229dd891059942007da7b0b1ecde283683fc2ff37f01f32570eb0db5963cbe87679b1e47d90ea90b96a15bb60dd1260a13f5cf4e45861551e7f20282b5bacfd96da6aa4708bb55a2a33faf9cb9e1701abf4d6c8f5c59e985b712e", 0x73, 0x88}, {&(0x7f0000000180)="1e50e0fbfd74a016c29a9596b78ffa330c27ddc3e936949c8e6d81a8389266a3", 0x20, 0x96}, {&(0x7f00000001c0)="039217841837", 0x6, 0x63}], 0x280003, &(0x7f0000000280)={[{@shortname_winnt}, {@nonumtail}, {@rodir}, {@rodir}, {@shortname_win95}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@rodir}, {@shortname_lower}], [{@euid_gt={'euid>', 0xee01}}]})
symlinkat(&(0x7f0000000040)='./file0\x00', r1, &(0x7f0000000340)='./file0\x00')
r2 = signalfd4(r0, &(0x7f0000000380)={[0x800]}, 0x8, 0x800)
r3 = openat2(r2, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x40, 0x4, 0x8}, 0x18)
renameat(r1, &(0x7f0000000440)='./file0\x00', r0, &(0x7f0000000480)='./file0\x00')
r4 = openat$full(0xffffffffffffff9c, &(0x7f00000004c0), 0x80, 0x0)
r5 = syz_mount_image$nfs4(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x1, 0x8, &(0x7f0000000b00)=[{&(0x7f0000000580)="42c67f3bd64095eacc8d10f777ba78edb1c7bda2dc5b9e984c26c8ed9537f8235d23b59933db08c22bee8f67078b7884b092acd37e8c2961d895fc184dd9469dfec588f2b91ff83f56942dfcebf9b4eff5401c3738729ce36cd22b115e48d54e2983428be8319da8c5", 0x69, 0xffffffffffffff01}, {&(0x7f0000000600)="987de4bb2bc6a5b09b4a79d8e81861cd32bc2eb3839df770d88ef282e3940e728e28752f8c7c9937f9cae1dedd9d7208c2c3be843b64d2869aefcbe53c10fcb54772048e2658f97d252c1248715581f9a21afd14695293c0f4d85c26f47772716bd6ff42b5c7859d689deb940c204a42beb0a3d0859e6dfb3034e5aaae15a8ed2b97c3e5f564cffcc1d75d228cefa895fb163b28d29fe0de39d92b3a6b132e422aae7de9a25f1056bad9966fb7d87d1282cfc83c7b3cf02dcad64761d6ad6d7c49ba3bb683ce49bc71ea", 0xca, 0x9}, {&(0x7f0000000700)="05d59ad93d32f9c700c452f7817c557283738a0efab671405d8c3910e4da987e8c57f1bd0c982dd70ef5233ff29a0ff8e6136598a1906c1f1212ce9c0e8b786830d856e94faa348c7b5d79ab0837b1ae2db9a353995f91056e46827d17a036505211abc3280b07b9a10374448177f128eb4c5999166bd618b273e41dabf2b04d2e3d4717dce3905c073229b9f2737ba6cc3fd18dcff1769f5095b6fbe37385d4ac5e70868d1385e2b97e55a060c1a3ae47efda2c30187ca3fecd9cb495a1c3b881d6e342f5e605df8b7ae2", 0xcb, 0x1}, {&(0x7f0000000800)="a68eb94791ab06c57cf0afd5e88db5f712c9f8753a5eef9c539d7aef9c02ff06b032ff1c3357f010", 0x28, 0x10001}, {&(0x7f0000000840)="d0b51d6af153144852506b6372f4ffdf0febd2579443d82d95be01b72bb2195d579b0aade9fbd67aead7a17c74d92aef3de3d586c20f07188062a73342d3eed5908730f774ab8a977f2fba5ef6f4593a2f7f4bc28265c1fa7770902a6bce26f8f9e8c75c7dff223677bd33d76ec2eff51896531d650276519d", 0x79, 0x9}, {&(0x7f00000008c0)="1e671e7c3ef278b979d0758a2d32e9690ebd8c7edad6df1a421bc0a637d57fc36f843fc90591d3794a0a5602ad49dceaed20c50c50c3975cf2136884666dcc2a3fffb6b36b6fe409acb14be936bc0ffc3b3b720b31f2d4eb37ef3c9705ea5692f9217a3b69072cbaf4632041be8cf8acda4e95ddd74983a973e7bdad4da5d08c4e9ffb4d673c9bbf03b69b30246106d6dd9fb2df424f75a037fae66779ad1dd17fefc90c31c07e4441c3002b66a89bbbbc67f2c486806a8d5267e9244c3d16a62c2e119f5c0a70ddc6eddef1ee7d8a72a4da43a2e2e476c51a66b18664cc8f3377627813c346b8b97cf3c503adde5935f3b05a08", 0xf4}, {&(0x7f00000009c0)="b263c5b4ac01b1c42b2c5b25b64337d7bce9ecbf2195afd43e8e51c115c80548debb0589d3b9b8f219fa384f8a2379cc6ed4f178d35dcf1645384c145090eb40a754bef5a013f9277eae5338dcdd6904916fb2c66541", 0x56, 0x7fffffff}, {&(0x7f0000000a40)="619818730427d91fcccf13641c8dddab6ae26345bce461ea981a8cffbe289d67e8f4ed1dfd7f3aedd47897569f2409348b6bf43c80fdbc671c9e4c34d94f54a47a53b1fa4449cbc3a5926abc31e4e32ce5d2a8a253ab8bc6807512f73d6ef317ac8de15dbb65b331a250b423d307084104eb2453ed48a6486268906df77e8bcb797c12cff75a28c14535f6f62cc81685ca237b63ab9e1e4ab90c569b744e77", 0x9f, 0x9}], 0x3210428, &(0x7f0000000bc0)={[{'vfat\x00'}, {'macroman'}, {'/dev/full\x00'}, {'shortname=lower'}, {':\x00'}], [{@fowner_gt={'fowner>', 0xffffffffffffffff}}]})
r6 = openat(r5, &(0x7f0000000c40)='./file0\x00', 0x84000, 0x100)
r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x15, 0x30, r3, 0x0)
syz_io_uring_setup(0x2762, &(0x7f0000000c80)={0x0, 0xda19, 0x8, 0x1, 0x3af, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000d00), &(0x7f0000000d40)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000d80)=@IORING_OP_NOP={0x0, 0x3}, 0x7)
ioctl$BTRFS_IOC_QUOTA_CTL(r1, 0xc0109428, &(0x7f0000000dc0)={0x1, 0x2})
r9 = syz_io_uring_setup(0x154f, &(0x7f0000000e00)={0x0, 0x8b8e, 0x2, 0x1, 0x4c, 0x0, r3}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))
sendfile(r4, r6, 0x0, 0x7fffffff)
io_uring_enter(r0, 0x25de, 0xc09c, 0x3, &(0x7f0000000f00)={[0x100000001]}, 0x8)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x8010, r9, 0x0)
r11 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6, 0x12, r9, 0x10000000)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000f40)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r12}}, 0x20)

09:48:12 executing program 5:
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={<r1=>r0, 0xdf64, 0x600000000000000, 0x100})
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x23, &(0x7f0000000080)=0xfffffffd, 0x4)
r2 = dup2(r0, r1)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f00000000c0)={'filter\x00', 0x0, 0x0, 0x0, [0xfff, 0xa7, 0x1000, 0x7, 0xfff, 0x5]}, &(0x7f0000000140)=0x78)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000180), 0x884, 0x0)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x68, 0x0, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xf, 0xa9, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_RATE_TX_MAX={0xc}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}]}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0x40800)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r2, 0xf504, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000300)={0x2, 'veth0_virt_wifi\x00', 0x1}, 0x18)
sendmsg$AUDIT_TTY_SET(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x18, 0x3f9, 0x10, 0x70bd2a, 0x25dfdbfe, {0x1}, ["", "", "", "", "", "", ""]}, 0x18}, 0x1, 0x0, 0x0, 0x20004004}, 0x4000880)
r4 = syz_mount_image$iso9660(&(0x7f0000000440), &(0x7f0000000480)='./file0\x00', 0x9, 0x3, &(0x7f0000000640)=[{&(0x7f00000004c0)="77bc7cee88cfe7f6c9a3689d9a26c85a", 0x10, 0x2}, {&(0x7f0000000500)="361552da72dfa8de27aaf7d03af6e4d9f5d3af1574ef18a4ce8df2c4a20f64abec8c73fb3a71a899258ba01ecac8b863395990d41f342eaafde9baae51db11a4025071637ccbd898d93b2bc0f9b2ec32318ec11106f2c7b95f45021920bececcf610d342f433028815848d73d0df0b7b", 0x70, 0x400}, {&(0x7f0000000580)="fd324f3a7362c8b4aa6a4fdb6127dd903e8a0e0afa5e55b6e32916e39a7e27e1bd3f00647fdf46215838ed12df315dc0114074071f82c6a84cc3224986078877bf52335bb3bc17b21f9df46758a8bc34f2ccb128fab7c29e381bad0676cadca2c1d12dcb2bc89e765973f48f2da9b166d1769bfe1c99077c8d158d500c4f318c59630e3f6b11cd22c9946c2107630993700926144a77ae2c0e184c925b55624de745845fdb96", 0xa6, 0xbc}], 0x410, &(0x7f00000006c0)={[{@overriderock}, {@map_off}], [{@obj_role={'obj_role', 0x3d, 'firstname\x00'}}, {@measure}, {@audit}]})
openat2(r4, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x4}, 0x18)
r5 = openat$cgroup_type(r0, &(0x7f0000000780), 0x2, 0x0)
r6 = pidfd_open(0xffffffffffffffff, 0x0)
r7 = dup2(r5, r6)
sendmsg$AUDIT_TTY_GET(r1, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x10, 0x3f8, 0x100, 0x70bd2c, 0x25dfdbfc, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x20004010}, 0x80)
sendmsg$GTP_CMD_GETPDP(r1, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x64, 0x0, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@GTPA_FLOW={0x6, 0x6, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_TID={0xc, 0x3, 0x4}, @GTPA_FLOW={0x6}, @GTPA_TID={0xc}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_MS_ADDRESS={0x8, 0x5, @local}]}, 0x64}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
openat(r2, &(0x7f0000000a00)='./file0\x00', 0x40000, 0x80)
write(r7, &(0x7f0000000a40), 0x0)

09:48:12 executing program 7:
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
syz_genetlink_get_family_id$tipc(&(0x7f0000000000), r0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x100, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000440)={&(0x7f0000000180)={0x2b0, 0x0, 0x100, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0xc1b4, 0x31}}}}, [@NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x28}, @NL80211_ATTR_IE={0x66, 0x2a, [@cf={0x4, 0x6, {0x2, 0x9, 0x2, 0x101}}, @fast_bss_trans={0x37, 0x58, {0x81, 0x1, "5cd084e7855b2188204bae958027c5db", "216010ac8a9aaf37e4478b4a4052f25e41d15b9426de1a3eb13ad525d901d948", "4c66cd9f295bfadb809644e75cf2279f00f4df8a47edfccc515ddb6d35b55905", [{0x3, 0x4, "afddb3df"}]}}]}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x3d}, @NL80211_ATTR_IE={0x20e, 0x2a, [@fast_bss_trans={0x37, 0x12b, {0x5, 0x8, "c4bcc9488fe9d992f19bd1a1f1c80dc0", "fe8b5626752e3cdd8dfb1d2d42f9edd38c476047c3124882824adaec673037f8", "27a9a780528a273e577f4c5567858271ada681186b9b7f46545fb4b08395028b", [{0x4, 0x18, "74206010e3e474c93fdfc1c79368a2b6c90d4540ec78400b"}, {0x2, 0x12, "7097bc536ad6785076b6eea2508eb88215ab"}, {0x2, 0x1d, "1384408a699a3595ffe1edb9e13692f72ec521d8b5adf1f168fb46d237"}, {0x1, 0x10, "b7706e505f7c6c1242af298f96d576f9"}, {0x4, 0x12, "1c84521d1149f314bf63dafb8fb17feeb41a"}, {0x1, 0x22, "17fa69c6b62794ab54bb402d1b1c1e5303562b582e5c9b7b7688d2de77a2ca7e9ed1"}, {0x1, 0x21, "c1ad5e0329d9e60985eddacc2f573823ae36b670ae7dcfdffd2b27b7de643bf284"}, {0x1, 0x1d, "7d76ac2ffbc1fd532192c666cc17706c61b76d5a658df862dc29214bdb"}]}}, @mesh_config={0x71, 0x7, {0x1, 0x0, 0x0, 0x0, 0x0, 0x13, 0x1}}, @mesh_id={0x72, 0x6}, @mesh_id={0x72, 0x6}, @tim={0x5, 0x35, {0x3, 0x41, 0x7, "ff5311faa39fc988c29ca313d76805c06fa0aa3f7a52b9409c9a6c63d2828cde9a384d6e0bfa147e5ad21a6752f36bdfc3b8"}}, @preq={0x82, 0x72, @not_ext={{0x1, 0x1, 0x1}, 0x9, 0x1f, 0x928f, @device_b, 0x1, "", 0x68c3177b, 0x4, 0x8, [{{0x0, 0x0, 0x1}, @broadcast, 0x4}, {{0x1}, @device_a, 0x3}, {{0x1}, @broadcast, 0x80000001}, {{0x1, 0x0, 0x1}, @device_a, 0x5b}, {{}, @broadcast, 0xc}, {{}, @device_b, 0x6}, {{0x1}, @broadcast, 0x10000}, {{}, @broadcast, 0xffff699d}]}}, @channel_switch={0x25, 0x3, {0x1, 0x99, 0x2}}, @chsw_timing={0x68, 0x4, {0x2, 0x2}}, @ssid={0x0, 0x6, @default_ibss_ssid}, @ext_channel_switch={0x3c, 0x4, {0x0, 0x8, 0xb7, 0x7}}]}]}, 0x2b0}, 0x1, 0x0, 0x0, 0x48d4}, 0x40)
ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, &(0x7f00000004c0)={<r2=>0x0, 0x6, 0x0, [0x9d4e, 0x10001, 0x1, 0x3ff, 0x4], [0x8, 0x3, 0x7fff, 0xfffffffffffffe01, 0x1fc4, 0x3, 0xcfc6, 0x7, 0x1, 0x0, 0x5, 0xaa8, 0x9, 0x8, 0xfffffffffffffffa, 0x3, 0x1f, 0x6, 0x2, 0x80000000, 0x9, 0x334c, 0x7fffffff, 0x8, 0x100000000, 0x8, 0x7468, 0x400, 0x3f, 0xffffffffffff60a3, 0x6, 0x5, 0x8, 0x8b, 0x7fffffff, 0x461811ca, 0x7a4, 0x3, 0x6, 0x4, 0x0, 0xfa, 0x7, 0xff, 0x119f, 0x1c9, 0xff, 0x9, 0xff, 0x56, 0x0, 0x3, 0x9, 0x10000, 0x7fff, 0x7, 0x7, 0xfff, 0x6, 0x2c2, 0x7, 0x8, 0x0, 0x4, 0x7ff, 0x7, 0x7ff, 0x401, 0x7fff, 0x0, 0x10000, 0xdea, 0xff, 0x2, 0x0, 0x5, 0x0, 0x6, 0x7, 0x200, 0x2, 0x100000000, 0x7, 0xfff, 0x100000000, 0x8, 0x6, 0xadeb4d1, 0x7fff, 0x100000001, 0x9, 0x1, 0x401, 0x101, 0x3, 0x1, 0x100000000, 0xffffffffffffffff, 0x72, 0xdd27, 0x2, 0x9, 0xdb, 0x4d, 0x800, 0x1000, 0x0, 0x5, 0x0, 0x8, 0x53, 0x7fff, 0x354d, 0xfffffffffffffffd, 0x4, 0x7, 0xbd, 0x10001, 0x7fff, 0x2]})
ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000900)={r2, 0x7, 0x9e14, 0x1})
r3 = openat$incfs(r1, &(0x7f0000000d00)='.pending_reads\x00', 0x519c00, 0x9)
openat(r3, &(0x7f0000000d40)='./file0\x00', 0x40000, 0x43)
r4 = syz_open_dev$usbmon(&(0x7f0000000d80), 0x9, 0x400200)
pwritev(r4, &(0x7f0000001180)=[{&(0x7f0000000dc0)="3b01bad41151020c66b6cab073470a7b045437b18aa53e7fa8149b667dbbf5ee8c31b51677569024e748423ddb6fa1c1198040702bbecc2f6ec537b64a6bffc85a1256d38500855c4f35e0b008dc3056d01c0981761a943acbf94d97417f179734854eb4eae6cd7f1850a012db4575b1d43da272db045dc9eb88f1a4546344cdc71c4c46942e9bf06306892feb6d6cf57910e87cee45cf2ce14141158aeb6b87fe31b8c4252e39bcc5ee1cd9948f153770ff0b3148916554981df0a40907587256951f5eca8ee388116d9f3389", 0xcd}, {&(0x7f0000000ec0)="5d5d7c53cdbe45d9c067cf08cef9363655c07b8fa425353f7693e5337f67acb14a42314fb815", 0x26}, {&(0x7f0000000f00)="660ecaff6b1f82ae43fe11235eefb2fccccd68b4a9e47eda49511f38cc0c6890b58f387742a69ac48c4629a8156db7a00e75d02068f5d5e1809bcbda06776fb1cf12d87e1ae2e29c4d3b73339bea1faf13a4221cc1974dc69aaed7d3c4116ea1b0c436404d05aae78b90fcd3eda498be27fa0c4a1f839eaf41034116780ade48d6844e0e219234c9a7d14498be8dce9b2d0d8deeb88ec775a1a8ce9f60ceaf289292eafb95a2f3fe874ca931249247281154f2fdcae01bdd2de4cda7ca48f06172171b", 0xc3}, {&(0x7f0000001000)="b9b4f4f4085b421e8c03f54e1128ebab64bb1bdc64658b7b506a3eb85ed80c52ab3a6470b4b0fc1d5f9d839ea0c775c01112e9ce209fbb8f2e480ca10aec6bd8bf04ce72360bd2fd34ab77bbc2996787732413a2264e8f3256ad85169d01846d50a054c5efa93bacae5ef4b650f2f3edf7ac8de79bbddb7feb3f63", 0x7b}, {&(0x7f0000001080)="36f36814b234e6eb20922216a546d044ef4c6c4ccf49cad83d2f02e509907f74ef8fd24e806ebf29d5d078246b60387e4bc90afe1f3d1aa2116c4cad5a8e77c73f0d10cf65587a98a69cf2278a1360bdafe2abb50a17fc0264eefb93d3e457f9ed80e9dacc742dcf25bd1de509429bc62bec730f0808c2c4c55f5d4176a89672156115a12ce1ceb4744960410184f360c15450f75666cf0c", 0x98}, {&(0x7f0000001140)="14f59aa3746db97381", 0x9}], 0x6, 0x71, 0xfffffffd)
openat$full(0xffffffffffffff9c, &(0x7f0000001200), 0xc0, 0x0)
connect$inet6(r3, &(0x7f0000001240)={0xa, 0x4e22, 0x2, @private0, 0x401}, 0x1c)
r5 = syz_open_dev$sg(&(0x7f0000001280), 0x6, 0x200)
fcntl$setlease(r5, 0x400, 0x0)
connect$inet6(r1, &(0x7f00000012c0)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x40}, 0x1c)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001300), r1)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000001340)={{0x1, 0x1, 0x18, <r6=>r1, {0x2}}, './file0\x00'})
bind$inet6(r6, &(0x7f0000001380)={0xa, 0x4e22, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x9}, 0x1c)

[   85.665387] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   85.668013] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   85.668969] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   85.672090] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   85.674335] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   85.675890] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   85.718296] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   85.735921] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   85.737607] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   85.741684] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   85.743605] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   85.744749] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   85.814498] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   85.816857] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   85.818968] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   85.821588] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   85.823517] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   85.824842] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   85.825648] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   85.826571] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   85.827818] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   85.828854] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   85.830158] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   85.831115] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   85.832399] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   85.833147] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   85.834015] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   85.834869] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   85.836013] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   85.841523] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   85.842602] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   85.843458] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   85.843524] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   85.845488] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   85.846185] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   85.847408] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   85.848591] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   85.849612] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   85.850447] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   85.851493] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   85.852520] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   85.858774] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   85.933825] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   85.937421] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   85.941090] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   85.944863] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   85.946078] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   85.948482] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   87.692545] Bluetooth: hci0: command 0x0409 tx timeout
[   87.756120] Bluetooth: hci1: command 0x0409 tx timeout
[   87.884900] Bluetooth: hci7: command 0x0409 tx timeout
[   87.884929] Bluetooth: hci3: command 0x0409 tx timeout
[   87.885644] Bluetooth: hci6: command 0x0409 tx timeout
[   87.886427] Bluetooth: hci4: command 0x0409 tx timeout
[   87.949190] Bluetooth: hci5: command 0x0409 tx timeout
[   88.012250] Bluetooth: hci2: command 0x0409 tx timeout
[   89.740127] Bluetooth: hci0: command 0x041b tx timeout
[   89.804158] Bluetooth: hci1: command 0x041b tx timeout
[   89.932246] Bluetooth: hci6: command 0x041b tx timeout
[   89.932789] Bluetooth: hci3: command 0x041b tx timeout
[   89.933597] Bluetooth: hci7: command 0x041b tx timeout
[   89.934154] Bluetooth: hci4: command 0x041b tx timeout
[   89.997147] Bluetooth: hci5: command 0x041b tx timeout
[   90.060160] Bluetooth: hci2: command 0x041b tx timeout
[   91.789141] Bluetooth: hci0: command 0x040f tx timeout
[   91.852108] Bluetooth: hci1: command 0x040f tx timeout
[   91.981102] Bluetooth: hci4: command 0x040f tx timeout
[   91.981607] Bluetooth: hci7: command 0x040f tx timeout
[   91.982446] Bluetooth: hci3: command 0x040f tx timeout
[   91.982875] Bluetooth: hci6: command 0x040f tx timeout
[   92.044189] Bluetooth: hci5: command 0x040f tx timeout
[   92.108164] Bluetooth: hci2: command 0x040f tx timeout
[   93.836104] Bluetooth: hci0: command 0x0419 tx timeout
[   93.900056] Bluetooth: hci1: command 0x0419 tx timeout
[   94.029132] Bluetooth: hci6: command 0x0419 tx timeout
[   94.029638] Bluetooth: hci3: command 0x0419 tx timeout
[   94.030092] Bluetooth: hci7: command 0x0419 tx timeout
[   94.030536] Bluetooth: hci4: command 0x0419 tx timeout
[   94.092079] Bluetooth: hci5: command 0x0419 tx timeout
[   94.157097] Bluetooth: hci2: command 0x0419 tx timeout
[  143.184140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  143.184934] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  143.189263] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  143.480849] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  143.481698] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  143.483140] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  144.139133] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.139893] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.142964] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  144.268583] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.269318] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.271881] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  144.338326] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.339104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.340958] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  144.372942] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.373699] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.382312] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  144.408291] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.409140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.411073] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  144.485253] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.486317] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.488039] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  144.650854] 
[  144.651090] ======================================================
[  144.651622] WARNING: possible circular locking dependency detected
[  144.652193] 6.2.0-next-20230224 #1 Not tainted
[  144.652628] ------------------------------------------------------
[  144.653613] syz-executor.7/273 is trying to acquire lock:
[  144.656066] ffff888016b28880 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xd80
[  144.657030] 
[  144.657030] but task is already holding lock:
[  144.657517] ffff888016b28920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250
[  144.658316] 
[  144.658316] which lock already depends on the new lock.
[  144.658316] 
[  144.659006] 
[  144.659006] the existing dependency chain (in reverse order) is:
[  144.659621] 
[  144.659621] -> #1 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}:
[  144.660220]        __mutex_lock+0x133/0x14a0
[  144.660618]        hci_cmd_sync_work+0x1e6/0x320
[  144.661075]        process_one_work+0xa0f/0x1790
[  144.661513]        worker_thread+0x63b/0x1260
[  144.661930]        kthread+0x2e9/0x3a0
[  144.662259]        ret_from_fork+0x2c/0x50
[  144.662619] 
[  144.662619] -> #0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}:
[  144.663317]        __lock_acquire+0x2d56/0x6380
[  144.663730]        lock_acquire.part.0+0xea/0x320
[  144.664156]        __flush_work+0x109/0xd80
[  144.664530]        __cancel_work_timer+0x39c/0x4e0
[  144.664995]        hci_cmd_sync_clear+0x52/0x250
[  144.665406]        hci_unregister_dev+0xf9/0x410
[  144.665828]        vhci_release+0x80/0x100
[  144.666221]        __fput+0x263/0xa40
[  144.666549]        task_work_run+0x174/0x280
[  144.666942]        do_exit+0xad8/0x2800
[  144.667306]        do_group_exit+0xd4/0x2a0
[  144.667683]        get_signal+0x23c8/0x2450
[  144.668059]        arch_do_signal_or_restart+0x79/0x590
[  144.668506]        exit_to_user_mode_prepare+0x122/0x190
[  144.668988]        syscall_exit_to_user_mode+0x1d/0x50
[  144.669441]        do_syscall_64+0x4c/0x90
[  144.669804]        entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  144.670283] 
[  144.670283] other info that might help us debug this:
[  144.670283] 
[  144.670931]  Possible unsafe locking scenario:
[  144.670931] 
[  144.671420]        CPU0                    CPU1
[  144.671792]        ----                    ----
[  144.672177]   lock(&hdev->cmd_sync_work_lock);
[  144.672561]                                lock((work_completion)(&hdev->cmd_sync_work));
[  144.673240]                                lock(&hdev->cmd_sync_work_lock);
[  144.673828]   lock((work_completion)(&hdev->cmd_sync_work));
[  144.674318] 
[  144.674318]  *** DEADLOCK ***
[  144.674318] 
[  144.674796] 1 lock held by syz-executor.7/273:
[  144.675184]  #0: ffff888016b28920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250
[  144.676043] 
[  144.676043] stack backtrace:
[  144.676431] CPU: 1 PID: 273 Comm: syz-executor.7 Not tainted 6.2.0-next-20230224 #1
[  144.677107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  144.677753] Call Trace:
[  144.677955]  <TASK>
[  144.678131]  dump_stack_lvl+0x91/0xf0
[  144.678424]  check_noncircular+0x263/0x2e0
[  144.678750]  ? __pfx_check_noncircular+0x10/0x10
[  144.679149]  ? save_trace+0x285/0xcb0
[  144.679477]  ? __pfx_register_lock_class+0x10/0x10
[  144.679883]  __lock_acquire+0x2d56/0x6380
[  144.680240]  ? __pfx___lock_acquire+0x10/0x10
[  144.680629]  ? __pfx___lock_acquire+0x10/0x10
[  144.681011]  ? __pfx___lock_acquire+0x10/0x10
[  144.681376]  lock_acquire.part.0+0xea/0x320
[  144.681714]  ? __flush_work+0xdd/0xd80
[  144.682056]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  144.682461]  ? __flush_work+0xdd/0xd80
[  144.682797]  ? rcu_read_lock_sched_held+0x42/0x80
[  144.683174]  ? trace_lock_acquire+0x170/0x1e0
[  144.683531]  ? __flush_work+0xdd/0xd80
[  144.683864]  ? lock_acquire+0x32/0xc0
[  144.684193]  ? __flush_work+0xdd/0xd80
[  144.684525]  __flush_work+0x109/0xd80
[  144.684871]  ? __flush_work+0xdd/0xd80
[  144.685212]  ? __pfx_mark_lock.part.0+0x10/0x10
[  144.685611]  ? __pfx___flush_work+0x10/0x10
[  144.685973]  ? lock_acquire.part.0+0xea/0x320
[  144.686325]  ? hci_cmd_sync_clear+0x45/0x250
[  144.686659]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  144.687046]  ? hci_cmd_sync_clear+0x45/0x250
[  144.687416]  ? rcu_read_lock_sched_held+0x42/0x80
[  144.687808]  ? trace_lock_acquire+0x170/0x1e0
[  144.688175]  ? lock_is_held_type+0x9f/0x120
[  144.688533]  ? mark_held_locks+0x9e/0xe0
[  144.688918]  __cancel_work_timer+0x39c/0x4e0
[  144.689268]  ? __pfx___cancel_work_timer+0x10/0x10
[  144.689650]  ? __cancel_work_timer+0x2aa/0x4e0
[  144.690001]  ? __pfx___cancel_work_timer+0x10/0x10
[  144.690391]  ? lock_release+0x1e3/0x710
[  144.690722]  ? __pfx_lock_release+0x10/0x10
[  144.691107]  ? do_raw_write_lock+0x11e/0x3b0
[  144.691475]  ? __pfx_vhci_release+0x10/0x10
[  144.691843]  hci_cmd_sync_clear+0x52/0x250
[  144.692209]  ? __pfx_vhci_release+0x10/0x10
[  144.692543]  hci_unregister_dev+0xf9/0x410
[  144.692892]  vhci_release+0x80/0x100
[  144.693192]  __fput+0x263/0xa40
[  144.693500]  task_work_run+0x174/0x280
[  144.693815]  ? __pfx_task_work_run+0x10/0x10
[  144.694150]  ? switch_task_namespaces+0xb1/0xd0
[  144.694503]  ? kmem_cache_free+0xff/0x510
[  144.694830]  do_exit+0xad8/0x2800
[  144.695113]  ? find_held_lock+0x2c/0x110
[  144.695438]  ? lock_release+0x1e3/0x710
[  144.695771]  ? __pfx_do_exit+0x10/0x10
[  144.696093]  ? do_raw_spin_lock+0x125/0x270
[  144.696454]  do_group_exit+0xd4/0x2a0
[  144.696759]  get_signal+0x23c8/0x2450
[  144.697112]  ? __pfx_get_signal+0x10/0x10
[  144.697449]  ? find_held_lock+0x2c/0x110
[  144.697777]  arch_do_signal_or_restart+0x79/0x590
[  144.698145]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  144.698599]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  144.699037]  ? __sys_getsockopt+0x181/0x250
[  144.699453]  exit_to_user_mode_prepare+0x122/0x190
[  144.699844]  syscall_exit_to_user_mode+0x1d/0x50
[  144.700236]  do_syscall_64+0x4c/0x90
[  144.700524]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  144.700929] RIP: 0033:0x7fc78caa013a
[  144.701217] Code: Unable to access opcode bytes at 0x7fc78caa0110.
[  144.701706] RSP: 002b:00007fff20704458 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  144.702339] RAX: fffffffffffffe00 RBX: 0000000000000000 RCX: 00007fc78caa013a
[  144.702914] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[  144.703474] RBP: 0000000000000003 R08: 00007fff2070448c R09: ffffffffffffff00
[  144.704058] R10: 00007fc78cb83168 R11: 0000000000000246 R12: 00007fff2070448c
[  144.704667] R13: 00007fc78caf9ae5 R14: 00007fc78cb83168 R15: 00007fc78cb83160
[  144.705270]  </TASK>
[  144.727399] ieee80211 phy13: Selected rate control algorithm 'minstrel_ht'
[  149.388136] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  149.580115] Bluetooth: hci6: Opcode 0x c03 failed: -110
[  149.580115] Bluetooth: hci7: Opcode 0x c03 failed: -110
[  149.580269] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  149.580669] Bluetooth: hci5: Opcode 0x c03 failed: -110
[  149.581217] Bluetooth: hci2: Opcode 0x c03 failed: -110
[  149.581662] Bluetooth: hci3: Opcode 0x c03 failed: -110
[  153.676144] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  153.868099] Bluetooth: hci2: Opcode 0x c03 failed: -110
[  154.060120] Bluetooth: hci7: Opcode 0x c03 failed: -110
[  154.060120] Bluetooth: hci6: Opcode 0x c03 failed: -110
[  154.060251] Bluetooth: hci3: Opcode 0x c03 failed: -110
[  154.060755] Bluetooth: hci5: Opcode 0x c03 failed: -110
[  154.061298] Bluetooth: hci4: Opcode 0x c03 failed: -110

VM DIAGNOSIS:
09:49:12  Registers:
info registers vcpu 0
RAX=0000000000000001 RBX=0000000000000000 RCX=ffffffff81529366 RDX=fffffbfff0ba4f53
RSI=0000000000000008 RDI=ffffffff85d27a90 RBP=ffff88806ce36048 RSP=ffff888015e2f990
R8 =0000000000000000 R9 =ffffffff85d27a97 R10=fffffbfff0ba4f52 R11=0000000000000001
R12=ffff88807ffdc000 R13=0000000000000006 R14=00000000ffffff28 R15=0000000000000000
RIP=ffffffff8152936e RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe07ef8fa000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe07ef8f8000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000562fb6548a00 CR3=000000000e51a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=000000000000000000000000000000ff
XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007f6f68ff97c800007f6f68ff97c0
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=7d4c3bd27452b8137121a0720f903a98 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000063 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82502865 RDI=ffffffff87f10da0 RBP=ffffffff87f10d60 RSP=ffff88800e65ef70
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000063 R11=0000000000000001
R12=0000000000000063 R13=ffffffff87f10d60 R14=0000000000000010 R15=ffffffff82502850
RIP=ffffffff825028bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe488f030000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe488f02e000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6403ee5ae0 CR3=0000000016e86000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff
XMM02=00524f52524500400000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000