Warning: Permanently added '[localhost]:23600' (ECDSA) to the list of known hosts.
2025/08/31 01:52:09 fuzzer started
2025/08/31 01:52:10 dialing manager at localhost:43077
syzkaller login: [   59.241974] cgroup: Unknown subsys name 'net'
[   59.292182] cgroup: Unknown subsys name 'cpuset'
[   59.307895] cgroup: Unknown subsys name 'rlimit'
2025/08/31 01:52:20 syscalls: 2214
2025/08/31 01:52:20 code coverage: enabled
2025/08/31 01:52:20 comparison tracing: enabled
2025/08/31 01:52:20 extra coverage: enabled
2025/08/31 01:52:20 setuid sandbox: enabled
2025/08/31 01:52:20 namespace sandbox: enabled
2025/08/31 01:52:20 Android sandbox: enabled
2025/08/31 01:52:20 fault injection: enabled
2025/08/31 01:52:20 leak checking: enabled
2025/08/31 01:52:20 net packet injection: enabled
2025/08/31 01:52:20 net device setup: enabled
2025/08/31 01:52:20 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/08/31 01:52:20 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/08/31 01:52:20 USB emulation: enabled
2025/08/31 01:52:20 hci packet injection: enabled
2025/08/31 01:52:20 wifi device emulation: enabled
2025/08/31 01:52:20 802.15.4 emulation: enabled
2025/08/31 01:52:20 fetching corpus: 50, signal 23907/25662 (executing program)
2025/08/31 01:52:20 fetching corpus: 100, signal 35055/38385 (executing program)
2025/08/31 01:52:20 fetching corpus: 150, signal 40910/45755 (executing program)
2025/08/31 01:52:21 fetching corpus: 200, signal 47645/53889 (executing program)
2025/08/31 01:52:21 fetching corpus: 250, signal 52617/60176 (executing program)
2025/08/31 01:52:21 fetching corpus: 300, signal 57093/65952 (executing program)
2025/08/31 01:52:21 fetching corpus: 350, signal 61491/71543 (executing program)
2025/08/31 01:52:21 fetching corpus: 400, signal 65688/76891 (executing program)
2025/08/31 01:52:21 fetching corpus: 450, signal 67995/80372 (executing program)
2025/08/31 01:52:21 fetching corpus: 500, signal 70890/84399 (executing program)
2025/08/31 01:52:21 fetching corpus: 550, signal 74276/88801 (executing program)
2025/08/31 01:52:21 fetching corpus: 600, signal 77769/93247 (executing program)
2025/08/31 01:52:21 fetching corpus: 650, signal 80544/97000 (executing program)
2025/08/31 01:52:21 fetching corpus: 700, signal 82729/100164 (executing program)
2025/08/31 01:52:22 fetching corpus: 750, signal 84391/102827 (executing program)
2025/08/31 01:52:22 fetching corpus: 800, signal 85954/105416 (executing program)
2025/08/31 01:52:22 fetching corpus: 850, signal 88633/108887 (executing program)
2025/08/31 01:52:22 fetching corpus: 900, signal 90014/111233 (executing program)
2025/08/31 01:52:22 fetching corpus: 950, signal 91689/113829 (executing program)
2025/08/31 01:52:22 fetching corpus: 1000, signal 93201/116242 (executing program)
2025/08/31 01:52:22 fetching corpus: 1050, signal 95275/119101 (executing program)
2025/08/31 01:52:22 fetching corpus: 1100, signal 97168/121794 (executing program)
2025/08/31 01:52:22 fetching corpus: 1150, signal 98386/123905 (executing program)
2025/08/31 01:52:22 fetching corpus: 1200, signal 99541/125934 (executing program)
2025/08/31 01:52:22 fetching corpus: 1250, signal 100616/127900 (executing program)
2025/08/31 01:52:23 fetching corpus: 1300, signal 101801/129933 (executing program)
2025/08/31 01:52:23 fetching corpus: 1350, signal 103089/131991 (executing program)
2025/08/31 01:52:23 fetching corpus: 1400, signal 104594/134242 (executing program)
2025/08/31 01:52:23 fetching corpus: 1450, signal 105665/136101 (executing program)
2025/08/31 01:52:23 fetching corpus: 1500, signal 107661/138599 (executing program)
2025/08/31 01:52:23 fetching corpus: 1550, signal 109440/140877 (executing program)
2025/08/31 01:52:23 fetching corpus: 1600, signal 111548/143359 (executing program)
2025/08/31 01:52:23 fetching corpus: 1650, signal 112698/145133 (executing program)
2025/08/31 01:52:23 fetching corpus: 1700, signal 114197/147168 (executing program)
2025/08/31 01:52:23 fetching corpus: 1750, signal 116090/149399 (executing program)
2025/08/31 01:52:24 fetching corpus: 1800, signal 117508/151294 (executing program)
2025/08/31 01:52:24 fetching corpus: 1850, signal 118214/152693 (executing program)
2025/08/31 01:52:24 fetching corpus: 1900, signal 119234/154291 (executing program)
2025/08/31 01:52:24 fetching corpus: 1950, signal 120271/155880 (executing program)
2025/08/31 01:52:24 fetching corpus: 2000, signal 121255/157353 (executing program)
2025/08/31 01:52:24 fetching corpus: 2050, signal 122208/158837 (executing program)
2025/08/31 01:52:24 fetching corpus: 2100, signal 122780/160097 (executing program)
2025/08/31 01:52:24 fetching corpus: 2150, signal 123382/161401 (executing program)
2025/08/31 01:52:24 fetching corpus: 2200, signal 124534/162947 (executing program)
2025/08/31 01:52:24 fetching corpus: 2250, signal 125348/164311 (executing program)
2025/08/31 01:52:24 fetching corpus: 2300, signal 126292/165710 (executing program)
2025/08/31 01:52:24 fetching corpus: 2350, signal 127667/167355 (executing program)
2025/08/31 01:52:25 fetching corpus: 2400, signal 128606/168751 (executing program)
2025/08/31 01:52:25 fetching corpus: 2450, signal 130014/170441 (executing program)
2025/08/31 01:52:25 fetching corpus: 2500, signal 130767/171683 (executing program)
2025/08/31 01:52:25 fetching corpus: 2550, signal 131952/173092 (executing program)
2025/08/31 01:52:25 fetching corpus: 2600, signal 132560/174229 (executing program)
2025/08/31 01:52:25 fetching corpus: 2650, signal 134764/176202 (executing program)
2025/08/31 01:52:25 fetching corpus: 2700, signal 135532/177383 (executing program)
2025/08/31 01:52:25 fetching corpus: 2750, signal 136097/178463 (executing program)
2025/08/31 01:52:25 fetching corpus: 2800, signal 136619/179490 (executing program)
2025/08/31 01:52:25 fetching corpus: 2850, signal 137114/180517 (executing program)
2025/08/31 01:52:26 fetching corpus: 2900, signal 137724/181570 (executing program)
2025/08/31 01:52:26 fetching corpus: 2950, signal 138277/182617 (executing program)
2025/08/31 01:52:26 fetching corpus: 3000, signal 138754/183595 (executing program)
2025/08/31 01:52:26 fetching corpus: 3050, signal 139298/184617 (executing program)
2025/08/31 01:52:26 fetching corpus: 3100, signal 139989/185655 (executing program)
2025/08/31 01:52:26 fetching corpus: 3150, signal 140451/186601 (executing program)
2025/08/31 01:52:26 fetching corpus: 3200, signal 141465/187867 (executing program)
2025/08/31 01:52:26 fetching corpus: 3250, signal 141950/188809 (executing program)
2025/08/31 01:52:26 fetching corpus: 3300, signal 142835/189935 (executing program)
2025/08/31 01:52:26 fetching corpus: 3350, signal 143306/190818 (executing program)
2025/08/31 01:52:27 fetching corpus: 3400, signal 144154/191906 (executing program)
2025/08/31 01:52:27 fetching corpus: 3450, signal 144978/192911 (executing program)
2025/08/31 01:52:27 fetching corpus: 3500, signal 145316/193705 (executing program)
2025/08/31 01:52:27 fetching corpus: 3550, signal 145850/194540 (executing program)
2025/08/31 01:52:27 fetching corpus: 3600, signal 146562/195492 (executing program)
2025/08/31 01:52:27 fetching corpus: 3650, signal 147167/196385 (executing program)
2025/08/31 01:52:27 fetching corpus: 3700, signal 147917/197327 (executing program)
2025/08/31 01:52:27 fetching corpus: 3750, signal 148396/198149 (executing program)
2025/08/31 01:52:27 fetching corpus: 3800, signal 148973/199002 (executing program)
2025/08/31 01:52:27 fetching corpus: 3850, signal 149381/199783 (executing program)
2025/08/31 01:52:28 fetching corpus: 3900, signal 149871/200580 (executing program)
2025/08/31 01:52:28 fetching corpus: 3950, signal 150380/201401 (executing program)
2025/08/31 01:52:28 fetching corpus: 4000, signal 150820/202156 (executing program)
2025/08/31 01:52:28 fetching corpus: 4050, signal 151376/202924 (executing program)
2025/08/31 01:52:28 fetching corpus: 4100, signal 151875/203689 (executing program)
2025/08/31 01:52:28 fetching corpus: 4150, signal 152326/204412 (executing program)
2025/08/31 01:52:28 fetching corpus: 4200, signal 152792/205176 (executing program)
2025/08/31 01:52:28 fetching corpus: 4250, signal 153201/205892 (executing program)
2025/08/31 01:52:28 fetching corpus: 4300, signal 153612/206615 (executing program)
2025/08/31 01:52:28 fetching corpus: 4350, signal 153969/207284 (executing program)
2025/08/31 01:52:28 fetching corpus: 4400, signal 154657/208123 (executing program)
2025/08/31 01:52:28 fetching corpus: 4450, signal 155322/208873 (executing program)
2025/08/31 01:52:28 fetching corpus: 4500, signal 155752/209594 (executing program)
2025/08/31 01:52:29 fetching corpus: 4550, signal 156253/210262 (executing program)
2025/08/31 01:52:29 fetching corpus: 4600, signal 156635/210929 (executing program)
2025/08/31 01:52:29 fetching corpus: 4650, signal 156971/211617 (executing program)
2025/08/31 01:52:29 fetching corpus: 4700, signal 157450/212308 (executing program)
2025/08/31 01:52:29 fetching corpus: 4750, signal 158140/213028 (executing program)
2025/08/31 01:52:29 fetching corpus: 4800, signal 158566/213640 (executing program)
2025/08/31 01:52:29 fetching corpus: 4850, signal 158917/214291 (executing program)
2025/08/31 01:52:29 fetching corpus: 4900, signal 159511/214953 (executing program)
2025/08/31 01:52:29 fetching corpus: 4950, signal 160202/215650 (executing program)
2025/08/31 01:52:29 fetching corpus: 5000, signal 160701/216259 (executing program)
2025/08/31 01:52:30 fetching corpus: 5050, signal 161091/216859 (executing program)
2025/08/31 01:52:30 fetching corpus: 5100, signal 161765/217502 (executing program)
2025/08/31 01:52:30 fetching corpus: 5150, signal 162251/218078 (executing program)
2025/08/31 01:52:30 fetching corpus: 5200, signal 162705/218660 (executing program)
2025/08/31 01:52:30 fetching corpus: 5250, signal 162968/219199 (executing program)
2025/08/31 01:52:30 fetching corpus: 5300, signal 163375/219746 (executing program)
2025/08/31 01:52:30 fetching corpus: 5350, signal 163964/220283 (executing program)
2025/08/31 01:52:30 fetching corpus: 5400, signal 164332/220810 (executing program)
2025/08/31 01:52:30 fetching corpus: 5450, signal 164632/221337 (executing program)
2025/08/31 01:52:30 fetching corpus: 5500, signal 165216/221490 (executing program)
2025/08/31 01:52:30 fetching corpus: 5550, signal 165939/221500 (executing program)
2025/08/31 01:52:30 fetching corpus: 5600, signal 166331/221501 (executing program)
2025/08/31 01:52:31 fetching corpus: 5650, signal 166643/221502 (executing program)
2025/08/31 01:52:31 fetching corpus: 5700, signal 166929/221502 (executing program)
2025/08/31 01:52:31 fetching corpus: 5750, signal 167267/221504 (executing program)
2025/08/31 01:52:31 fetching corpus: 5800, signal 167775/221511 (executing program)
2025/08/31 01:52:31 fetching corpus: 5850, signal 168029/221529 (executing program)
2025/08/31 01:52:31 fetching corpus: 5900, signal 168629/221535 (executing program)
2025/08/31 01:52:31 fetching corpus: 5950, signal 168954/221551 (executing program)
2025/08/31 01:52:31 fetching corpus: 6000, signal 169312/221554 (executing program)
2025/08/31 01:52:31 fetching corpus: 6050, signal 169707/221580 (executing program)
2025/08/31 01:52:31 fetching corpus: 6100, signal 170131/221583 (executing program)
2025/08/31 01:52:31 fetching corpus: 6150, signal 170453/221585 (executing program)
2025/08/31 01:52:31 fetching corpus: 6200, signal 170742/221587 (executing program)
2025/08/31 01:52:32 fetching corpus: 6250, signal 170983/221594 (executing program)
2025/08/31 01:52:32 fetching corpus: 6300, signal 171399/221595 (executing program)
2025/08/31 01:52:32 fetching corpus: 6350, signal 171774/221638 (executing program)
2025/08/31 01:52:32 fetching corpus: 6400, signal 172128/221645 (executing program)
2025/08/31 01:52:32 fetching corpus: 6450, signal 172565/221647 (executing program)
2025/08/31 01:52:32 fetching corpus: 6500, signal 173018/221666 (executing program)
2025/08/31 01:52:32 fetching corpus: 6550, signal 173261/221674 (executing program)
2025/08/31 01:52:32 fetching corpus: 6600, signal 173597/221679 (executing program)
2025/08/31 01:52:32 fetching corpus: 6650, signal 173831/221680 (executing program)
2025/08/31 01:52:32 fetching corpus: 6700, signal 174177/221689 (executing program)
2025/08/31 01:52:33 fetching corpus: 6750, signal 174480/221697 (executing program)
2025/08/31 01:52:33 fetching corpus: 6800, signal 174931/221754 (executing program)
2025/08/31 01:52:33 fetching corpus: 6850, signal 175146/221755 (executing program)
2025/08/31 01:52:33 fetching corpus: 6900, signal 175437/221757 (executing program)
2025/08/31 01:52:33 fetching corpus: 6950, signal 175766/221757 (executing program)
2025/08/31 01:52:33 fetching corpus: 7000, signal 176091/221762 (executing program)
2025/08/31 01:52:33 fetching corpus: 7050, signal 176467/221767 (executing program)
2025/08/31 01:52:33 fetching corpus: 7100, signal 176825/221768 (executing program)
2025/08/31 01:52:33 fetching corpus: 7150, signal 177123/221801 (executing program)
2025/08/31 01:52:33 fetching corpus: 7200, signal 177339/221810 (executing program)
2025/08/31 01:52:33 fetching corpus: 7250, signal 177739/221816 (executing program)
2025/08/31 01:52:33 fetching corpus: 7300, signal 177921/221825 (executing program)
2025/08/31 01:52:33 fetching corpus: 7350, signal 178149/221836 (executing program)
2025/08/31 01:52:34 fetching corpus: 7400, signal 178447/221847 (executing program)
2025/08/31 01:52:34 fetching corpus: 7450, signal 178779/221851 (executing program)
2025/08/31 01:52:34 fetching corpus: 7500, signal 179064/221865 (executing program)
2025/08/31 01:52:34 fetching corpus: 7550, signal 179306/221869 (executing program)
2025/08/31 01:52:34 fetching corpus: 7600, signal 179528/221874 (executing program)
2025/08/31 01:52:34 fetching corpus: 7650, signal 179753/221876 (executing program)
2025/08/31 01:52:34 fetching corpus: 7700, signal 180131/221893 (executing program)
2025/08/31 01:52:34 fetching corpus: 7750, signal 180395/221893 (executing program)
2025/08/31 01:52:34 fetching corpus: 7800, signal 180732/221997 (executing program)
2025/08/31 01:52:34 fetching corpus: 7850, signal 180997/222013 (executing program)
2025/08/31 01:52:34 fetching corpus: 7900, signal 181307/222014 (executing program)
2025/08/31 01:52:34 fetching corpus: 7950, signal 181633/222014 (executing program)
2025/08/31 01:52:34 fetching corpus: 8000, signal 182035/222060 (executing program)
2025/08/31 01:52:35 fetching corpus: 8050, signal 182254/222063 (executing program)
2025/08/31 01:52:35 fetching corpus: 8100, signal 182570/222063 (executing program)
2025/08/31 01:52:35 fetching corpus: 8150, signal 183105/222066 (executing program)
2025/08/31 01:52:35 fetching corpus: 8200, signal 183308/222067 (executing program)
2025/08/31 01:52:35 fetching corpus: 8250, signal 183659/222176 (executing program)
2025/08/31 01:52:35 fetching corpus: 8300, signal 184008/222176 (executing program)
2025/08/31 01:52:35 fetching corpus: 8350, signal 184283/222195 (executing program)
2025/08/31 01:52:35 fetching corpus: 8400, signal 184586/222195 (executing program)
2025/08/31 01:52:35 fetching corpus: 8450, signal 184901/222196 (executing program)
2025/08/31 01:52:35 fetching corpus: 8500, signal 185167/222196 (executing program)
2025/08/31 01:52:36 fetching corpus: 8550, signal 185399/222197 (executing program)
2025/08/31 01:52:36 fetching corpus: 8600, signal 185697/222201 (executing program)
2025/08/31 01:52:36 fetching corpus: 8650, signal 185879/222207 (executing program)
2025/08/31 01:52:36 fetching corpus: 8700, signal 186282/222209 (executing program)
2025/08/31 01:52:36 fetching corpus: 8750, signal 186497/222211 (executing program)
2025/08/31 01:52:36 fetching corpus: 8800, signal 186925/222226 (executing program)
2025/08/31 01:52:36 fetching corpus: 8850, signal 187166/222230 (executing program)
2025/08/31 01:52:36 fetching corpus: 8900, signal 187437/222232 (executing program)
2025/08/31 01:52:36 fetching corpus: 8950, signal 187728/222234 (executing program)
2025/08/31 01:52:36 fetching corpus: 9000, signal 188064/222234 (executing program)
2025/08/31 01:52:36 fetching corpus: 9050, signal 188354/222242 (executing program)
2025/08/31 01:52:36 fetching corpus: 9100, signal 188568/222248 (executing program)
2025/08/31 01:52:37 fetching corpus: 9150, signal 188953/222249 (executing program)
2025/08/31 01:52:37 fetching corpus: 9200, signal 189315/222251 (executing program)
2025/08/31 01:52:37 fetching corpus: 9250, signal 189536/222253 (executing program)
2025/08/31 01:52:37 fetching corpus: 9300, signal 189805/222254 (executing program)
2025/08/31 01:52:37 fetching corpus: 9350, signal 190081/222255 (executing program)
2025/08/31 01:52:37 fetching corpus: 9400, signal 190286/222271 (executing program)
2025/08/31 01:52:37 fetching corpus: 9450, signal 190571/222281 (executing program)
2025/08/31 01:52:37 fetching corpus: 9500, signal 190884/222299 (executing program)
2025/08/31 01:52:37 fetching corpus: 9550, signal 191059/222305 (executing program)
2025/08/31 01:52:37 fetching corpus: 9600, signal 191269/222305 (executing program)
2025/08/31 01:52:37 fetching corpus: 9650, signal 191645/222391 (executing program)
2025/08/31 01:52:37 fetching corpus: 9700, signal 191900/222396 (executing program)
2025/08/31 01:52:38 fetching corpus: 9750, signal 192103/222398 (executing program)
2025/08/31 01:52:38 fetching corpus: 9800, signal 192362/222407 (executing program)
2025/08/31 01:52:38 fetching corpus: 9850, signal 192865/222420 (executing program)
2025/08/31 01:52:38 fetching corpus: 9900, signal 193086/222443 (executing program)
2025/08/31 01:52:38 fetching corpus: 9950, signal 193328/222450 (executing program)
2025/08/31 01:52:38 fetching corpus: 10000, signal 193523/222456 (executing program)
2025/08/31 01:52:38 fetching corpus: 10050, signal 194000/222461 (executing program)
2025/08/31 01:52:38 fetching corpus: 10100, signal 194187/222467 (executing program)
2025/08/31 01:52:38 fetching corpus: 10150, signal 194857/222468 (executing program)
2025/08/31 01:52:38 fetching corpus: 10200, signal 195188/222469 (executing program)
2025/08/31 01:52:38 fetching corpus: 10250, signal 195421/222487 (executing program)
2025/08/31 01:52:39 fetching corpus: 10300, signal 195647/222537 (executing program)
2025/08/31 01:52:39 fetching corpus: 10350, signal 195877/222544 (executing program)
2025/08/31 01:52:39 fetching corpus: 10400, signal 196039/222549 (executing program)
2025/08/31 01:52:39 fetching corpus: 10450, signal 196232/222553 (executing program)
2025/08/31 01:52:39 fetching corpus: 10500, signal 196391/222553 (executing program)
2025/08/31 01:52:39 fetching corpus: 10550, signal 196576/222553 (executing program)
2025/08/31 01:52:39 fetching corpus: 10600, signal 196736/222558 (executing program)
2025/08/31 01:52:39 fetching corpus: 10650, signal 196913/222563 (executing program)
2025/08/31 01:52:39 fetching corpus: 10700, signal 197084/222564 (executing program)
2025/08/31 01:52:39 fetching corpus: 10750, signal 197301/222574 (executing program)
2025/08/31 01:52:39 fetching corpus: 10800, signal 197469/222615 (executing program)
2025/08/31 01:52:39 fetching corpus: 10850, signal 197714/222630 (executing program)
2025/08/31 01:52:39 fetching corpus: 10900, signal 197896/222639 (executing program)
2025/08/31 01:52:40 fetching corpus: 10950, signal 198076/222648 (executing program)
2025/08/31 01:52:40 fetching corpus: 11000, signal 198382/222686 (executing program)
2025/08/31 01:52:40 fetching corpus: 11050, signal 198613/222700 (executing program)
2025/08/31 01:52:40 fetching corpus: 11100, signal 198827/222705 (executing program)
2025/08/31 01:52:40 fetching corpus: 11150, signal 199006/222708 (executing program)
2025/08/31 01:52:40 fetching corpus: 11200, signal 199369/222708 (executing program)
2025/08/31 01:52:40 fetching corpus: 11250, signal 199601/222714 (executing program)
2025/08/31 01:52:40 fetching corpus: 11300, signal 199777/222717 (executing program)
2025/08/31 01:52:40 fetching corpus: 11350, signal 199953/222719 (executing program)
2025/08/31 01:52:40 fetching corpus: 11400, signal 200140/222730 (executing program)
2025/08/31 01:52:40 fetching corpus: 11450, signal 200322/222733 (executing program)
2025/08/31 01:52:40 fetching corpus: 11500, signal 200536/222742 (executing program)
2025/08/31 01:52:41 fetching corpus: 11550, signal 201288/222791 (executing program)
2025/08/31 01:52:41 fetching corpus: 11600, signal 201469/222796 (executing program)
2025/08/31 01:52:41 fetching corpus: 11650, signal 201711/222806 (executing program)
2025/08/31 01:52:41 fetching corpus: 11700, signal 202167/222806 (executing program)
2025/08/31 01:52:41 fetching corpus: 11750, signal 202344/222817 (executing program)
2025/08/31 01:52:41 fetching corpus: 11800, signal 202545/222834 (executing program)
2025/08/31 01:52:41 fetching corpus: 11850, signal 202809/222876 (executing program)
2025/08/31 01:52:41 fetching corpus: 11900, signal 203029/222880 (executing program)
2025/08/31 01:52:41 fetching corpus: 11950, signal 203193/222895 (executing program)
2025/08/31 01:52:41 fetching corpus: 12000, signal 203350/222897 (executing program)
2025/08/31 01:52:41 fetching corpus: 12050, signal 203558/222932 (executing program)
2025/08/31 01:52:41 fetching corpus: 12100, signal 203710/222935 (executing program)
2025/08/31 01:52:42 fetching corpus: 12150, signal 203871/222936 (executing program)
2025/08/31 01:52:42 fetching corpus: 12200, signal 204031/222936 (executing program)
2025/08/31 01:52:42 fetching corpus: 12250, signal 204204/222936 (executing program)
2025/08/31 01:52:42 fetching corpus: 12285, signal 204329/222936 (executing program)
2025/08/31 01:52:42 fetching corpus: 12285, signal 204329/222936 (executing program)
2025/08/31 01:52:44 starting 8 fuzzer processes
01:52:44 executing program 0:
clock_gettime(0x0, &(0x7f00000009c0)={<r0=>0x0, <r1=>0x0})
recvmmsg(0xffffffffffffffff, &(0x7f0000000900)=[{{&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @empty}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000080)=""/127, 0x7f}, {&(0x7f0000000100)=""/218, 0xda}], 0x2, &(0x7f0000000240)=""/195, 0xc3}, 0x9}, {{&(0x7f0000000340)=@tipc, 0x80, &(0x7f00000004c0)=[{&(0x7f00000003c0)=""/226, 0xe2}], 0x1, &(0x7f0000000500)=""/50, 0x32}, 0x80000001}, {{&(0x7f0000000540)=@pppol2tpv3={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, {0x2, 0x0, @private}}}, 0x80, &(0x7f0000000880)=[{&(0x7f00000005c0)=""/110, 0x6e}, {&(0x7f0000000640)=""/14, 0xe}, {&(0x7f0000000680)=""/220, 0xdc}, {&(0x7f0000000780)=""/185, 0xb9}, {&(0x7f0000000840)=""/52, 0x34}], 0x5}, 0x400}], 0x3, 0x0, &(0x7f0000000a00)={r0, r1+10000000})
clock_gettime(0x4, &(0x7f0000000a40))
clock_gettime(0x0, &(0x7f0000000ac0)={<r3=>0x0, <r4=>0x0})
ppoll(&(0x7f0000000a80)=[{r2, 0x8}], 0x1, &(0x7f0000000b00)={r3, r4+60000000}, &(0x7f0000000b40)={[0x100000001]}, 0x8)
ppoll(&(0x7f0000000b80)=[{r2, 0x81bc}], 0x1, &(0x7f0000000bc0)={0x77359400}, &(0x7f0000000c00)={[0x3f]}, 0x8)
r5 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000c40), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000c80)={{0x1, 0x1, 0x18, <r6=>r5, {0x3000000, 0x1}}, './file0\x00'})
r7 = creat(&(0x7f0000000cc0)='./file0\x00', 0xa0)
ppoll(&(0x7f0000000d00)=[{r2, 0x4e0}, {r6, 0x208}, {r6, 0x280}, {r5, 0x20}, {r7, 0x40e4}, {r5, 0x20}, {r2, 0x2628}], 0x7, &(0x7f0000000d40), &(0x7f0000000d80)={[0x1]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r7, 0xc0189372, &(0x7f0000000dc0)={{0x1, 0x1, 0x18, <r8=>r5, {0x1}}, './file0\x00'})
r9 = accept$unix(r7, 0x0, &(0x7f0000000e00))
ioctl$AUTOFS_DEV_IOCTL_VERSION(r6, 0xc0189371, &(0x7f0000000e40)={{0x1, 0x1, 0x18, <r10=>r9}, '.\x00'})
r11 = syz_open_dev$vcsu(&(0x7f0000000e80), 0xffff, 0x200200)
epoll_pwait2(r11, &(0x7f0000000ec0)=[{}, {}], 0x2, &(0x7f0000000f00), &(0x7f0000000f40)={[0x5]}, 0x8)
pivot_root(&(0x7f0000000f80)='./file0\x00', &(0x7f0000000fc0)='./file0\x00')
move_mount(0xffffffffffffff9c, &(0x7f0000001000)='./file0\x00', r6, &(0x7f0000001040)='./file0\x00', 0x20)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r8, 0xc0189378, &(0x7f0000001080)={{0x1, 0x1, 0x18, <r12=>r2, {r11}}, './file0/file0\x00'})
execveat(r12, &(0x7f00000010c0)='./file0\x00', &(0x7f00000012c0)=[&(0x7f0000001100)='/dev/vcsu#\x00', &(0x7f0000001140)='/dev/vcsu#\x00', &(0x7f0000001180)='/dev/vcsu#\x00', &(0x7f00000011c0)=']]5%\x00', &(0x7f0000001200)='[\'(@+\xfd\x00', &(0x7f0000001240)='/dev/vcsu#\x00', &(0x7f0000001280)='](1[(\x00'], &(0x7f0000001400)=[&(0x7f0000001300)='/dev/vcsu#\x00', &(0x7f0000001340)='cgroup.subtree_control\x00', &(0x7f0000001380)='/dev/vcsu#\x00', &(0x7f00000013c0)='$*\x00'], 0x400)
ppoll(&(0x7f0000001440)=[{0xffffffffffffffff, 0x20}, {r10, 0x200}], 0x2, &(0x7f0000001480)={0x0, 0x989680}, &(0x7f00000014c0)={[0x4]}, 0x8)

01:52:44 executing program 1:
renameat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x7)
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x60100, 0x20, 0x8}, 0x18)
faccessat2(r0, &(0x7f0000000100)='./file0\x00', 0x18, 0x1100)
faccessat(r0, &(0x7f0000000140)='\x00', 0x11)
r1 = socket(0xa, 0x1, 0x400)
bind$unix(r1, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x1832001, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, 0xee00}}, {@cache_fscache}, {@cachetag={'cachetag', 0x3d, ':\''}}, {@version_u}, {@msize={'msize', 0x3d, 0x1}}, {@noextend}, {@afid={'afid', 0x3d, 0x8}}, {@noextend}, {@version_9p2000}, {@access_user}], [{@smackfsroot={'smackfsroot', 0x3d, 'Z.'}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@context={'context', 0x3d, 'unconfined_u'}}, {@smackfsdef={'smackfsdef', 0x3d, '%\xae]^+!*.\xda^'}}, {@appraise}, {@obj_type}]}})
r2 = geteuid()
fstat(r1, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
statx(r0, &(0x7f0000000500)='./file0\x00', 0x6000, 0x200, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, <r4=>0x0, <r5=>0x0})
getgroups(0x4, &(0x7f0000000640)=[0xffffffffffffffff, 0xee00, <r6=>0xee00, 0xee00])
lsetxattr$system_posix_acl(&(0x7f0000000400)='./file1\x00', &(0x7f0000000440)='system.posix_acl_access\x00', &(0x7f0000000680)={{}, {0x1, 0x6}, [{0x2, 0x3, r2}, {0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x1, 0xffffffffffffffff}, {0x2, 0x4, 0xee01}, {0x2, 0x0, r3}, {0x2, 0x2}], {0x4, 0x4}, [{0x8, 0x7, r5}, {0x8, 0x3, r6}], {0x10, 0x1}, {0x20, 0x1}}, 0x64, 0x2)
r7 = creat(&(0x7f0000000700)='./file2\x00', 0x0)
r8 = add_key$fscrypt_v1(&(0x7f0000000740), &(0x7f0000000780)={'fscrypt:', @desc4}, &(0x7f00000007c0)={0x0, "fbd5d17132576a60952d83cb8ef8db11fa46aa960e0feb78c26a3d27e5781362e5a96999f4832db118dcf904ae7b7feb4c13e63863d4e6ffd76ceb0d9c90c92b", 0x24}, 0x48, 0xffffffffffffffff)
r9 = getgid()
keyctl$chown(0x4, r8, r4, r9)
newfstatat(0xffffffffffffff9c, &(0x7f0000000840)='./file0\x00', &(0x7f0000000880), 0x2000)
recvmsg$unix(r7, &(0x7f0000001bc0)={0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000000900)=""/4096, 0x1000}, {&(0x7f0000001900)=""/115, 0x73}, {&(0x7f0000001980)=""/16, 0x10}, {&(0x7f00000019c0)=""/97, 0x61}, {&(0x7f0000001a40)=""/147, 0x93}], 0x5, &(0x7f0000001b80)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x30}, 0x40030043)
ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, &(0x7f0000001c00)={0x2, 0x9})
ioctl$BTRFS_IOC_BALANCE_CTL(0xffffffffffffffff, 0x40049421, 0x0)

01:52:44 executing program 2:
r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x1, 0x80000)
ioctl$TCGETA(r0, 0x5405, &(0x7f0000000040))
ioctl$RTC_WKALM_RD(r0, 0x80287010, &(0x7f0000000080))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x402a00, 0x0)
r2 = syz_io_uring_setup(0x63da, &(0x7f0000000100)={0x0, 0xee07, 0x2, 0x3, 0x109, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
ioctl$BTRFS_IOC_DEFRAG_RANGE(r2, 0x40309410, &(0x7f0000000200)={0x4, 0x9, 0x3, 0x8, 0x3, [0xfffffffe, 0x9, 0x0, 0x4]})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r3=>r1, {0xee01, 0xee01}}, './file0\x00'})
ioctl$NS_GET_USERNS(r3, 0xb701, 0x0)
r4 = accept$packet(r0, &(0x7f0000000280)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000002c0)=0x14)
ioctl$BTRFS_IOC_SEND(r1, 0x40489426, &(0x7f0000000340)={{r4}, 0x2, &(0x7f0000000300)=[0x8, 0x0], 0x1, 0x2, [0xfffffffffffffffa, 0x4, 0x9, 0x25]})
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r6, 0x6612)
fcntl$lock(r3, 0x25, &(0x7f00000003c0)={0x1, 0x1, 0x6, 0xfffffffffffffffb})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000480)={'sit0\x00', &(0x7f0000000400)={'syztnl2\x00', r5, 0x4, 0x1, 0x0, 0x2, 0x20, @remote, @local, 0x7, 0x7860, 0x1, 0x7ff}})
fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f00000004c0)=0x5)
ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r7=>r6, {0x6}}, './file0\x00'})
accept4$packet(r0, &(0x7f0000000980)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000009c0)=0x14, 0x0)
bind(r7, &(0x7f0000000a00)=@can={0x1d, r8}, 0x80)
close(r1)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0)

[   93.636433] audit: type=1400 audit(1756605164.704:7): avc:  denied  { execmem } for  pid=275 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
01:52:44 executing program 3:
mlockall(0x2)
mlockall(0x7)
r0 = fsmount(0xffffffffffffffff, 0x1, 0x6)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000000))
mlockall(0x6)
mlockall(0x1)
mlockall(0x0)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x64, 0x0, 0x300, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_MS_ADDRESS={0x8, 0x5, @empty}, @GTPA_FLOW={0x6}, @GTPA_PEER_ADDRESS={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0x23}}, @GTPA_PEER_ADDRESS={0x8, 0x4, @multicast1}, @GTPA_VERSION={0x8}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_MS_ADDRESS={0x8, 0x5, @broadcast}, @GTPA_O_TEI={0x8, 0x9, 0x2}, @GTPA_VERSION={0x8}, @GTPA_O_TEI={0x8}]}, 0x64}, 0x1, 0x0, 0x0, 0x4001}, 0xc0)
mlockall(0x2)
mlockall(0x6)
mlockall(0x4)
mlockall(0x2)
shmat(0x0, &(0x7f0000ffa000/0x3000)=nil, 0x0)
shmat(0x0, &(0x7f0000ffc000/0x3000)=nil, 0x0)
r1 = dup(0xffffffffffffffff)
vmsplice(r1, &(0x7f0000000440)=[{&(0x7f0000000180)="4cbbf6cee04b6c2a2c410be89bfed8612623ef429300574f27258599d3265e4646ff24ab557b6647338d5b618210d910b9aadcb3bdcdf4a9411208d3caa616ee0ff86ce0662f54819a46f55a3b9b5211b9ed362918ccecc0153f65a556e116ea3fe439ec32bae5e011103534b485", 0x6e}, {&(0x7f0000000200)="e63b0edfae2acaf50b29dd7f0eb3ff2c3786196084f22a8f430fc43ec36ce20856a8d664c8a03006d26c90e3c1f54d66284852cedb393c35435b7652ae945ab95e02e7604efba5578618ca9e671154b91a99ff8e5980bae6af838edabf362bcac9a7446057a268af4532c575dee5dbf5c8b55d9d815aafccac5eed1be1410bb1624c84b22600eb8daead1612b7cda410155c0dad02a8f8f6b79a4c189fdc024c5a397fc004457dbb421b1b7131c948ba4201c088b52a3540ffa405021692ea727d906806b6c0d881b99ddabf51cbfb02f45227d782eaabcb86093fff105eb8ab6927340c24ed0d", 0xe7}, {&(0x7f0000000300)="1746e77ffb5ef054ec3bfc717cc02c07269f58dfbe1c4fd43015c481b931", 0x1e}, {&(0x7f0000000340)="d10dccf32497bd40c5bc0c586a83f1109f539fea3fd3a18fdd72235f45eff5b3d1558757ba2752ba2701cdc66512efa62a3b09cc5b44d12a07157c77de99fc6a6a8fb5083c6622563a480be3078415e6fb5cdb12737e92c8293ab4a13e31b92499ccf66ccd19b82696d5749b", 0x6c}, {&(0x7f00000003c0)="3321611523ec39729498df660ff4b428f474075113565a076019be61bea78e0aea357d53afb8ac96f23c7db6caba865adcf43e266e483100d46ee0afeaa5106c7eb5835f2c544f5e250d208291e5e36086f468791d40b8a984aa5f49cb03fa48f1159d860353e82e42680231c5c464ad8b3e6d7f", 0x74}], 0x5, 0x8)
mlockall(0x5)
mlockall(0x2)
r2 = dup2(0xffffffffffffffff, r0)
splice(r2, &(0x7f00000004c0)=0x2, r1, &(0x7f0000000500)=0x1, 0x5a4, 0x8)

01:52:44 executing program 6:
getsockopt$bt_BT_RCVMTU(0xffffffffffffffff, 0x112, 0xd, &(0x7f0000000000)=0x8, &(0x7f0000000040)=0x2)
getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xee01, 0xee00}}, './file0\x00'})
accept(r0, &(0x7f0000000140)=@vsock={0x28, 0x0, 0x0, @host}, &(0x7f00000001c0)=0x80)
ioctl$sock_ifreq(r0, 0x8932, &(0x7f0000000200)={'ip6tnl0\x00', @ifru_ivalue})
clock_gettime(0x0, &(0x7f0000003400)={<r1=>0x0, <r2=>0x0})
recvmmsg(r0, &(0x7f0000003300)=[{{&(0x7f0000000240)=@in6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000740)=[{&(0x7f00000002c0)=""/168, 0xa8}, {&(0x7f0000000380)=""/147, 0x93}, {&(0x7f0000000440)=""/251, 0xfb}, {&(0x7f0000000540)=""/161, 0xa1}, {&(0x7f0000000600)=""/40, 0x28}, {&(0x7f0000000640)=""/205, 0xcd}], 0x6, &(0x7f00000007c0)=""/120, 0x78}, 0x6}, {{&(0x7f0000000840)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f0000001b80)=[{&(0x7f00000008c0)=""/231, 0xe7}, {&(0x7f00000009c0)=""/4096, 0x1000}, {&(0x7f00000019c0)=""/213, 0xd5}, {&(0x7f0000001ac0)=""/158, 0x9e}], 0x4}, 0x8001}, {{&(0x7f0000001bc0)=@ax25={{0x3, @netrom}, [@remote, @default, @remote, @default, @remote, @remote, @remote, @null]}, 0x80, &(0x7f0000002000)=[{&(0x7f0000001c40)=""/70, 0x46}, {&(0x7f0000001cc0)=""/235, 0xeb}, {&(0x7f0000001dc0)=""/218, 0xda}, {&(0x7f0000001ec0)=""/227, 0xe3}, {&(0x7f0000001fc0)=""/22, 0x16}], 0x5, &(0x7f0000002080)=""/4096, 0x1000}, 0x9}, {{&(0x7f0000003080)=@l2={0x1f, 0x0, @none}, 0x80, &(0x7f0000003240)=[{&(0x7f0000003100)=""/129, 0x81}, {&(0x7f00000031c0)=""/114, 0x72}], 0x2, &(0x7f0000003280)=""/105, 0x69}}], 0x4, 0x40010020, &(0x7f0000003440)={r1, r2+60000000})
clock_gettime(0x2, &(0x7f0000003480))
r3 = openat$incfs(r0, &(0x7f00000034c0)='.log\x00', 0x0, 0x1)
setsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000003500)=0x3, 0x2)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000003540)={0x1, 'ip6gretap0\x00', {}, 0x101})
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r4, 0x10e, 0x5, &(0x7f0000003580)=0x85fb, 0x4)
r5 = syz_open_dev$loop(&(0x7f00000035c0), 0x4, 0x480)
ppoll(&(0x7f0000003600)=[{r4, 0x310}, {r0, 0x100}, {r5, 0x4000}, {r4, 0x1231}], 0x4, &(0x7f0000003640)={0x77359400}, &(0x7f0000003680)={[0x401]}, 0x8)
socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair(0x2c, 0x2, 0xffffffff, &(0x7f00000036c0)={<r6=>0xffffffffffffffff})
ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8916, &(0x7f0000003700)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x38})
r7 = signalfd4(r0, &(0x7f0000003740)={[0x3f3a]}, 0x8, 0x80800)
recvmmsg(r7, &(0x7f0000008240)=[{{&(0x7f0000003780)=@ethernet={0x0, @dev}, 0x80, &(0x7f0000003a00)=[{&(0x7f0000003800)=""/175, 0xaf}, {&(0x7f00000038c0)=""/15, 0xf}, {&(0x7f0000003900)=""/225, 0xe1}], 0x3, &(0x7f0000003a40)=""/62, 0x3e}, 0x100}, {{&(0x7f0000003a80)=@pppoe={0x18, 0x0, {0x0, @link_local}}, 0x80, &(0x7f0000003c80)=[{&(0x7f0000003b00)=""/216, 0xd8}, {&(0x7f0000003c00)=""/100, 0x64}], 0x2, &(0x7f0000003cc0)=""/112, 0x70}, 0x6}, {{0x0, 0x0, &(0x7f0000005380)=[{&(0x7f0000003d40)=""/4096, 0x1000}, {&(0x7f0000004d40)=""/104, 0x68}, {&(0x7f0000004dc0)=""/223, 0xdf}, {&(0x7f0000004ec0)=""/145, 0x91}, {&(0x7f0000004f80)=""/221, 0xdd}, {&(0x7f0000005080)=""/145, 0x91}, {&(0x7f0000005140)=""/204, 0xcc}, {&(0x7f0000005240)=""/130, 0x82}, {&(0x7f0000005300)=""/98, 0x62}], 0x9, &(0x7f0000005440)=""/136, 0x88}, 0x1}, {{&(0x7f0000005500)=@ax25={{}, [@netrom, @bcast, @default, @null, @netrom, @default, @netrom]}, 0x80, &(0x7f0000005880)=[{&(0x7f0000005580)=""/254, 0xfe}, {&(0x7f0000005680)=""/103, 0x67}, {&(0x7f0000005700)=""/134, 0x86}, {&(0x7f00000057c0)=""/151, 0x97}], 0x4, &(0x7f00000058c0)=""/5, 0x5}, 0x100}, {{&(0x7f0000005900)=@pppoe={0x18, 0x0, {0x0, @remote}}, 0x80, &(0x7f0000005c40)=[{&(0x7f0000005980)=""/2, 0x2}, {&(0x7f00000059c0)=""/115, 0x73}, {&(0x7f0000005a40)=""/222, 0xde}, {&(0x7f0000005b40)=""/186, 0xba}, {&(0x7f0000005c00)=""/7, 0x7}], 0x5, &(0x7f0000005cc0)=""/4096, 0x1000}, 0x8}, {{&(0x7f0000006cc0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x80, &(0x7f0000006f80)=[{&(0x7f0000006d40)=""/19, 0x13}, {&(0x7f0000006d80)=""/244, 0xf4}, {&(0x7f0000006e80)=""/226, 0xe2}], 0x3, &(0x7f0000006fc0)=""/13, 0xd}, 0x8}, {{&(0x7f0000007000)=@l2, 0x80, &(0x7f0000008140)=[{&(0x7f0000007080)=""/4096, 0x1000}, {&(0x7f0000008080)=""/2, 0x2}, {&(0x7f00000080c0)=""/84, 0x54}], 0x3, &(0x7f0000008180)=""/179, 0xb3}, 0x3}], 0x7, 0x111, &(0x7f0000008440))

01:52:44 executing program 4:
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)={0x0, <r0=>0x0})
getpgrp(r0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x640243, 0x0)
ioctl$BLKRESETZONE(r1, 0x40101283, &(0x7f0000000080)={0xfff, 0x8d5a})
ioctl$BTRFS_IOC_QGROUP_LIMIT(0xffffffffffffffff, 0x8030942b, &(0x7f00000000c0)={0x82, {0x0, 0x9, 0x0, 0x100000001, 0x15}})
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f0000000140)={0x455e, 0x7fffffff})
fsetxattr$security_evm(r1, &(0x7f0000000180), &(0x7f00000001c0)=@ng={0x4, 0x13, '='}, 0x3, 0x4)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000200), 0x280000, 0x0)
ioctl$IOC_PR_CLEAR(r3, 0x401070cd, &(0x7f0000000240)={0x2})
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x701541)
ioctl$LOOP_SET_FD(r2, 0x4c00, r4)
ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f00000002c0))
gettid()
r5 = syz_io_uring_complete(0x0)
sendmsg$NL80211_CMD_DISASSOCIATE(r5, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x80, 0x0, 0x20, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_IE={0x5b, 0x2a, [@perr={0x84, 0xf, {0x44, 0x1, [@not_ext={{}, @broadcast, 0x3, "", 0xe}]}}, @chsw_timing={0x68, 0x4, {0x3, 0x2d}}, @gcr_ga={0xbd, 0x6}, @mic={0x8c, 0x18, {0x57e, "243237ce5d9c", @long="db92aec2fa3eb74979e4e687a836b1c8"}}, @ibss={0x6, 0x2}, @mic={0x8c, 0x18, {0x3d2, "5b601d875ef3", @long="9bc018e186dab78b653b4efb37eaf66e"}}]}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}]}, 0x80}, 0x1, 0x0, 0x0, 0x4000010}, 0x4004000)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r6=>r2, {0x401}}, './file0\x00'})
r7 = syz_open_dev$loop(&(0x7f0000000480), 0x100, 0x414000)
r8 = io_uring_setup(0x5952, &(0x7f00000004c0)={0x0, 0xda20, 0x10, 0x3, 0x3e2, 0x0, r3})
ppoll(&(0x7f0000000540)=[{r4, 0x8002}, {r6, 0x2420}, {r4, 0xc20a}, {r1, 0x242}, {r4, 0x1402}, {r7, 0x4142}, {r8, 0x82}], 0x7, &(0x7f0000000580), &(0x7f00000005c0)={[0x7fffffff]}, 0x8)

01:52:44 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ipv6_route\x00')
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000180)={'syztnl2\x00', &(0x7f0000000100)={'syztnl2\x00', <r1=>0x0, 0x2f, 0x6, 0xb0, 0x2, 0x7a, @private1, @private2, 0x626, 0x1, 0x6, 0x2}})
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f00000002c0)={'syztnl2\x00', &(0x7f0000000240)={'sit0\x00', <r2=>0x0, 0x7b, 0x1, 0x8, 0x1, 0x1, @mcast2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x20, 0x8000, 0x7ff, 0x8}})
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000480)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x114, 0x0, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x24044000}, 0x1)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000004c0)=<r3=>0x0)
r4 = syz_open_procfs(r3, &(0x7f0000000500)='net/softnet_stat\x00')
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0)
writev(r4, &(0x7f0000000a80)=[{&(0x7f0000000540)="79d1dbbf9a8e07a56193194f798e6cd50ebdb860121d8dc6a358477f774481381fb45c91a260c86e7e209fa164e10abf5d02b0cee96f1b18acd10b4d04935e75702a", 0x42}, {&(0x7f00000005c0)="5135d1804f54651a35fa36ed6cc72abeb7d2f823eec3931b8aeb62f718a402a8c8f2d620298751a38d3f9af35cf540f763414499f198c4a4bd332b7bf760a21d6d16287c2e08641406284f1d44cfe84391ae348490c5b27992e57c820594bef3ef6cc7aa623870210a480fb0cb962f68c79a9b3090", 0x75}, {&(0x7f0000000640)="4e1ea7bdbca94bc502dc23fbba332fa5701d910de4feb2a27ac1b9887bf6cbfabf45790f6de155de174703514320d8eddb31efb4971880a10cdf5d983147a5393d0bd5b3c7936cc5bbf3ccc757466ca67e55dfa5d72e6923e99ee1c0e08fa827581996f1248c67d975a76fa350e6ce01be164404b2e597977f32dd3e353e630d25199674ad59bc2c7cf20deebe76cac278e6f098c70dca88bc78c259a1c6091df5d5d2b1a581cd7178b8030c8343084ad453973c81f2498519fe426591f7cc38fa31cbfc815864fbda5a758712a8171309958e2a4a0fd77c4a472ffb6080b5", 0xdf}, {&(0x7f0000000740)="d8f866b82036dc95a55a5b1e24a2", 0xe}, {&(0x7f0000000780)="1bd556720d357c7f98ebf294253a99b33c4473c545fc19a80c9af8f4fbc03e57ff27959f1b0734e5e8e2fe987066dfb74c41fab7e179ad1fa986ffc9d5f785cf4d27765300f3158e8e43842c32eb8b66f0557102431444a28bf7535332f68c003130408e213d1a65509237522fc1db741577536414fcb716311ef160ae7c57274e97c706263225f3225bc9e5e671229f92545f60758555c371ae47f87ca0b741d46a10626f3fcf8bb9e1ddbd00", 0xad}, {&(0x7f0000000840)="c27487a7598f62d95672f140988acbe390690594ebff3e5b5b5402ba4ccc0d724b981295a94e877c6305325bae43b98ecdac5041d317f307469260adaa717e06b92e6f8429b21bc87f4fc69aea278efb45bf9176d809d5b8941dee39ae8e09", 0x5f}, {&(0x7f00000008c0)="d8fe3aff0b9da91f3c952164d48d0f32846a298740b299a55e9cb12eebba4e5fcab20d312fb114f046129e99b6fcfb1c2a3d488fae31af6e38785cbb7407d5e2e56a426dbabff1c7b4a5377afb3b318784dac9deaf743308f433a2509e49bddb7c0590fe60162083c2dcc34c52e8581329f5dfd5b63f9128e9eb20f4f5669430eca51d6e3577374334b6c11861d736aad5016c55e2eef5b853813687756a0868d7d51d630c96e3004e843c56046037f0ddaa91f77122bae51b1898b120bc08", 0xbf}, {&(0x7f0000000980)="0a936ee2ac41230478621011253130a914db2bc5b1a2684081c7d92d3c26697dbdc624e1c6bc5d2325916217cdc7f9f840a17475694558e490c0fa3fa0c68d03ef900ce23bd725380e01254576b9085e173942712ea0ec758f532fd00e6796804584fcc8c442bc72a546bd15045d3746fd54612a1294a6736aac71ae63b43c601add35088ccd92db1f59698fdd2b55f29fbfec52abe35bd9dfd02e377fa54dcad6e286bc0f2bfcf0f3e0a79d71527a970dc5e349f81e1c3243a2039e2a53ca0a6e8cf45fc690f2bfe3a5c4438d0b83ed9832fdc4bbbb6f67a24c7e512da8ad", 0xdf}], 0x8)
pipe(&(0x7f0000000b00)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r5, &(0x7f0000000d80)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000d40)={&(0x7f0000000b80)={0x194, 0x0, 0x20, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1ff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5c8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x81}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8}]}, @TIPC_NLA_LINK={0x88, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe36}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1ea}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2b}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}]}, @TIPC_NLA_SOCK={0x74, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_SOCK_CON={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x1f}, @TIPC_NLA_CON_NODE={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xf18}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x60d}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xac8}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffff7fff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3f31bb22}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x800}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x9}]}]}, 0x194}, 0x1, 0x0, 0x0, 0x4080}, 0x20000000)
sendmsg$inet6(r4, &(0x7f0000000fc0)={&(0x7f0000000dc0)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00', 0x6}, 0x1c, &(0x7f0000000f80)=[{&(0x7f0000000e00)="497160da29a7e4e68bc47a66148646a59ed2e649407710d40656267c59597d81355773cb6f", 0x25}, {&(0x7f0000000e40)="7d98fdae5c4bdabd4608fc1e3ab8ce362a76f70befc1bcbc4f30bde97a0c82cde478232e0d73640c637944dbce34a129a0e1fb549daff27f3edc624df393f5fe3e5c0c6835de05254d4f308f6cce7f6518b36b5ba549579c06e2f7cd070f7bfe6c7dcb72989692024f0ed063b9a7d6b8941f34b361cc2b75d960e3c382b76d400f6badc099f3839addf579178ff6e96bc76ead90f5c57e3875e2adc42a1af61fe0efd973fb4792dd091133bcb832b7ff4d4e3809", 0xb4}, {&(0x7f0000000f00)="da93ec33fb1552b36b03cc4e691c8e86903a7f5385c49342533a1435957a1bfa0be161bb734c940ff416f8de0d1f9c87994ac479a14353f6153541ee0a58c0e3dc18854c6487f5d54e3e0a669ccd70ef9ee3a31f21e94f2b74b1b89e857799c2d2f88539b7e93458cef17f080aa50c7f60894e390b65d2ba1cf358ede988", 0x7e}], 0x3}, 0x8010)
r7 = accept4$inet6(r5, &(0x7f0000001000)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000001040)=0x1c, 0x0)
setsockopt$inet6_mreq(r7, 0x29, 0x15, &(0x7f0000001080)={@local, r1}, 0x14)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000010c0)={'veth1_virt_wifi\x00', <r8=>0x0})
r9 = accept4(r0, 0x0, &(0x7f0000001100), 0x80000)
sendto(r9, &(0x7f0000001140)="371281306daddaef8ab4ea7855cc66b933a3c65b763f7f6b582b8763543e91ce5f51a15b819a969847e522738eb25ea7c9d190eaa8b59ad8a8d88ff2c6697d0bcf5c9178825797e7a88232b41e7bc5e0cc587211f1f8b4956f593b95788fe4d1c2bbff8d5430d38ddd6f1378e25535f67b41f43d8fbb971b4f490201838e16c544cbc8e53aa163a2004b5fda37d51e27dc5b82e934b3fb7531c9d2e92863b349b845e06ebe0270cf0604257e1c1b63ce40c2a828cebdcbc9e40a7469e4c9a1a1be1dd47e0307de3a6674f7025781ff283bfa1989252362debe2127", 0xdb, 0x14, &(0x7f0000001240)=@alg={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x80)
r10 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000012c0), 0x10400, 0x0)
sendmmsg$inet6(r10, &(0x7f0000001a40)=[{{&(0x7f0000001300)={0xa, 0x4e23, 0x4, @private0, 0xfff}, 0x1c, &(0x7f0000001780)=[{&(0x7f0000001340)="e2b89f2192cd0fd6126ea73958c70ee56787f470d60fe267c20e214505361169cce8d83d3daa41a91e7385cd09095660667797cb3e08771c16201e64e0784896bc00ac484b85ec404673796a6e5230c19bd1100a379615125268715b4673f7a7e8627e0e43a7ac491dab89c85686472159187ee0fd7ab4bc5daee2ad1b4d84692e1bf35360f75350820f7c8d4b8b6bb7a95fed86cf7917c353ab1e8a71e2a411381d7ecd0ec59c2dba68c7ad948bcd18cc166fd572047aa1a10d5ffa31b941b657f62d792193ca2fe13f486f612f80c7242a54a350ab6460e68f84", 0xdb}, {&(0x7f0000001440)="5b75aa79bd0c", 0x6}, {&(0x7f0000001480)="a5b7bfe87bf54011d9e76059ee87f7486b5ff18c9f50efd98eceedd268fa8eae15c829f3c2113ed1ef42cc564d139da6f01563446a74114d9f00778ec41708be558b82d9c220ba66ebc44c4058cb90a6a3c1d8eb75ea3ad5319779f8c739ece366a7cb0a96b9acdf02c95fc708be8b05", 0x70}, {&(0x7f0000001500)="fadcbfade3ff21ed736b8bd22dad5a378ae4eaf8d29f71b9f268b6f94285f2f53b7c8fbf0352f1b6aaf66255129c64e0e197cb96126535868e044459abe8bfdc4a1205db6f3d79655e7bdb004da4a0c2bf976dc7179b8c7a12bc5dc95cb77c046ac83022a2935c97de551013671da1ec6c", 0x71}, {&(0x7f0000001580)="d76893b37817", 0x6}, {&(0x7f00000015c0)="4061aa113197c4e3c97f690bc262531b3366eab50391c0692ab56d22e5db123f3a8ac133525fbfe1b2980534d7f18fd682d2d3e98ff6d2ef02cac9075c8e1df08dd3e95017dd06a9e04f8d2e1829121de3ddb72d60087d00745aba6890e95aea5f48ed1f08b0ef028ac35e28a4408dc3a92a27e194f475392072e63fe6534ce315f23862ebdc1688c2ba698059d5cd", 0x8f}, {&(0x7f0000001680)="41ab52a4cd934b87165e497b6d39f0bb7b7c901afc629e884af72f12f8a261f878c34486e61f6ac98881e9ffda7128bc8244c110132cce65e2cfd989319af25c3846b864369d0b0e896f9511f0139f0c111e050a646ffffd0a88566409137a6305ccc04f7844fbacdb78dbcfc4cfc5cc84998886b67006848606d90e0125114fdd385dbd027b8c296df0db3b79166fdf857527e636d1a248343b30ab773ffaa2526ec8dd2dd7adc808daa6dc6c30778f31ce1b48378946f8f74228f0584dd2cc1c59b1475dce", 0xc6}], 0x7, &(0x7f0000001800)=[@dontfrag={{0x14, 0x29, 0x3e, 0x5}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast2, r2}}}, @dstopts={{0x38, 0x29, 0x37, {0x32, 0x3, '\x00', [@generic={0x35, 0x1c, "4daf9c88f9239bb7c63284cd04080e454f39740162ab3ee5fa742aae"}]}}}, @hopopts={{0x30, 0x29, 0x36, {0x2, 0x2, '\x00', [@ra={0x5, 0x2, 0x9}, @jumbo={0xc2, 0x4, 0x5}, @ra={0x5, 0x2, 0xfff}, @ra={0x5, 0x2, 0x20}]}}}, @dstopts={{0xc0, 0x29, 0x37, {0x87, 0x14, '\x00', [@generic={0xd, 0x7e, "5b17b6e3c24fbbd5e34119f3c719fe6def16f52e2cea8e658e893464561506664836bef881f5fb683f9e6dd797f509fedd04e0b9ef723f4fa78f05709e825c8052cb35b156d2da30e16034a5ad1b641e991ba58d128b4b33baeae4ed99ef3e392c40f5f287e8cbdb881eb6329e1ce2effdd15d1c5bf199fa082fbcfe0c1b"}, @enc_lim={0x4, 0x1, 0x8}, @calipso={0x7, 0x20, {0x2, 0x6, 0x7f, 0x3, [0x8fbd, 0x5cac, 0x67c1]}}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast1, r8}}}, @hopopts={{0x60, 0x29, 0x36, {0x8, 0x8, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x1000}, @hao={0xc9, 0x10, @mcast1}, @ra={0x5, 0x2, 0x8}, @jumbo={0xc2, 0x4, 0x70be}, @enc_lim={0x4, 0x1, 0x7}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @pad1, @enc_lim={0x4, 0x1, 0x16}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x4}}], 0x208}}], 0x1, 0x4040040)
r11 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001a80), 0x10800, 0x0)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r11, &(0x7f0000001e40)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001e00)={&(0x7f0000001b40)={0x288, 0x0, 0x10, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0xfff, 0x5a}}}}, [@NL80211_ATTR_IE={0xe8, 0x2a, [@dsss={0x3, 0x1, 0xa5}, @fast_bss_trans={0x37, 0x87, {0x5, 0x2, "885cec147ccead461d34515475d6374e", "fabcef282ac750a327475efdce67a4b155a30d8293c1cbcc6a172f7a6d10bd82", "0a5657fe85f1b6912624a3004b1df22390e88bb63b0bf3f1b750bb27f1a10ce7", [{0x2, 0x26, "41a81a103d37ddd11a60f6abd73c6acac6d0ab6feb9bfdc5a08ff48dbac8c6143d9136a4375b"}, {0x3, 0xb, "8a3cee6c1a18d2fd5d7bd1"}]}}, @dsss={0x3, 0x1, 0xa}, @supported_rates={0x1, 0x7, [{0x6, 0x1}, {0x12, 0x1}, {0x1}, {0xc}, {0x7}, {0x30, 0x1}, {0xc, 0x1}]}, @preq={0x82, 0x1a, @not_ext={{0x1, 0x1}, 0x7, 0x1, 0x5, @broadcast, 0x81, "", 0x6, 0x62b84c0d}}, @mesh_config={0x71, 0x7, {0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x9, 0x40}}, @prep={0x83, 0x25, @ext={{}, 0x9, 0xae, @broadcast, 0xdd1, @device_a, 0x0, 0x0, @broadcast, 0x8001}}]}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x26}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xe}, @NL80211_ATTR_IE={0x150, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x0, 0x61, 0xb8, 0x8}}, @mesh_config={0x71, 0x7, {0x1, 0x0, 0x1, 0x0, 0x1, 0x5, 0x1}}, @fast_bss_trans={0x37, 0xa4, {0x1, 0x6, "1009da8578759c5943371a338e147ec0", "79c2b0c364a29ae05ee34d0519e0e4f4c401b1f7cdae2a0e5397c7fdd3ce60a0", "471a4955782045eb0eb132686a889ae5c62869b54653eace5f0481d86968de60", [{0x2, 0x2, 'zw'}, {0x2, 0x6, "eff353bf1023"}, {0x1, 0x16, "6f82660cf59eafbd525566d2e1a18d9e46962a34e423"}, {0x3, 0x1b, "d966f5640b1f8c994e1d5a7c54d6b94db486f2f660a1b7df6b75ab"}, {0x1, 0x4, "516a4caf"}, {0x4, 0x9, "eb3812241fdc26e75f"}]}}, @rann={0x7e, 0x15, {{0x0, 0x8}, 0xa0, 0x3, @broadcast, 0x28d, 0x200, 0xffff}}, @peer_mgmt={0x75, 0x16, {0x0, 0x8, @void, @val=0x1d, @val="2cda6ab3e1211e566132e4445b1d756b"}}, @perr={0x84, 0x2, {0xfa}}, @random={0x40, 0x1e, "3d8a3b1a54b790f28f0ca56d455d5f4b8ce82d36dbbf9fef474925fc0876"}, @rann={0x7e, 0x15, {{0x1, 0x1}, 0x48, 0x0, @device_b, 0x7ff, 0x9, 0x4}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0xff, 0x95, 0x40}}, @prep={0x83, 0x25, @ext={{}, 0xb7, 0xee, @device_b, 0x3c, @device_a, 0x49, 0x552191cf, @device_a, 0x6}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x288}, 0x1, 0x0, 0x0, 0x800}, 0x40080)

01:52:44 executing program 5:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x40040, 0x0)
read(r0, &(0x7f0000000040)=""/40, 0x28)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000080)={{{@in6=@dev, @in=@broadcast}}, {{@in6=@private2}, 0x0, @in=@initdev}}, &(0x7f0000000180)=0xe8)
getsockname$packet(r0, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'team0\x00'})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r4=>r1, {<r5=>r3}}, './file0\x00'})
r6 = syz_open_dev$rtc(&(0x7f00000002c0), 0x5ea, 0x8000)
ioctl$FS_IOC_READ_VERITY_METADATA(r6, 0xc0286687, &(0x7f0000000340)={0x3, 0x8000, 0x10, &(0x7f0000000300)=""/16})
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000380), 0x4)
creat(&(0x7f00000003c0)='./file0\x00', 0x20)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2b, &(0x7f0000000400)={0x9, {{0xa, 0x4e20, 0x1, @private1, 0x40}}, {{0xa, 0x4e24, 0x6, @empty, 0x70}}}, 0x108)
recvfrom(r3, &(0x7f0000000540)=""/190, 0xbe, 0x20012021, 0x0, 0x0)
r7 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000600), 0xd4401, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r7, 0x4004f506, &(0x7f0000000640)=0x1)
syz_io_uring_setup(0x4feb, &(0x7f0000000680)={0x0, 0xdc, 0xe, 0x3, 0x25d, 0x0, r5}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000700), &(0x7f0000000740)=<r8=>0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000780)={{0x1, 0x1, 0x18, <r9=>r4}, './file0\x00'})
syz_io_uring_submit(0x0, r8, &(0x7f0000000800)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r9, 0x0, &(0x7f00000007c0)='./file0\x00', 0x9a, 0x800, 0x12345}, 0xfffffff9)

[   94.901178] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   94.903685] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   94.904494] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   94.907325] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   94.909333] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   94.934795] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   94.936045] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   94.937308] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   94.938067] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   94.939322] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   94.939924] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   94.941205] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   94.941809] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   94.943206] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   94.946681] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   94.949087] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   94.950283] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   94.950981] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   94.956799] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   94.957370] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   94.980383] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   94.982889] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   94.985158] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   94.990300] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   94.991789] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   94.993367] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   94.998786] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   94.999682] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   95.001954] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   95.004266] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   95.007879] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   95.013627] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   95.022131] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   95.023226] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   95.029075] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   95.062301] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   95.074056] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   95.079028] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   95.097733] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   95.103476] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   96.933925] Bluetooth: hci1: command tx timeout
[   96.997724] Bluetooth: hci2: command tx timeout
[   96.997879] Bluetooth: hci3: command tx timeout
[   96.999170] Bluetooth: hci0: command tx timeout
[   97.061917] Bluetooth: hci6: command tx timeout
[   97.062685] Bluetooth: hci4: command tx timeout
[   97.063281] Bluetooth: hci5: command tx timeout
[   97.125812] Bluetooth: hci7: command tx timeout
[   98.982332] Bluetooth: hci1: command tx timeout
[   99.046780] Bluetooth: hci3: command tx timeout
[   99.047221] Bluetooth: hci2: command tx timeout
[   99.047623] Bluetooth: hci0: command tx timeout
[   99.110531] Bluetooth: hci4: command tx timeout
[   99.111026] Bluetooth: hci6: command tx timeout
[   99.111418] Bluetooth: hci5: command tx timeout
[   99.174674] Bluetooth: hci7: command tx timeout
[  101.030935] Bluetooth: hci1: command tx timeout
[  101.093738] Bluetooth: hci0: command tx timeout
[  101.094154] Bluetooth: hci3: command tx timeout
[  101.094533] Bluetooth: hci2: command tx timeout
[  101.157858] Bluetooth: hci5: command tx timeout
[  101.158260] Bluetooth: hci6: command tx timeout
[  101.158791] Bluetooth: hci4: command tx timeout
[  101.221707] Bluetooth: hci7: command tx timeout
[  103.078735] Bluetooth: hci1: command tx timeout
[  103.141728] Bluetooth: hci2: command tx timeout
[  103.142495] Bluetooth: hci3: command tx timeout
[  103.143384] Bluetooth: hci0: command tx timeout
[  103.205695] Bluetooth: hci6: command tx timeout
[  103.206439] Bluetooth: hci4: command tx timeout
[  103.207415] Bluetooth: hci5: command tx timeout
[  103.269915] Bluetooth: hci7: command tx timeout
[  132.002972] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.003661] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.154884] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.155501] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.333420] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.334147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.466388] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.467921] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
01:53:23 executing program 7:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)={0x28, 0x11, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x2}, @typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x28}], 0x1}, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r2, &(0x7f0000006100)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x1, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = getpgid(0xffffffffffffffff)
stat(&(0x7f0000001b80)='./file0\x00', &(0x7f0000001bc0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000001c40)=<r6=>0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001c80)={{0x1, 0x1, 0x18, r0, {0xee00, <r7=>0xffffffffffffffff}}, './file0\x00'})
r8 = gettid()
r9 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000001cc0), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000001d00)={{0x1, 0x1, 0x18, <r10=>r1, {0x6}}, './file0\x00'})
r11 = open$dir(&(0x7f0000001d40)='./file0\x00', 0xc0, 0x80)
r12 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
sendmmsg$unix(r0, &(0x7f0000001e40)=[{{&(0x7f0000000040)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001900)=[{&(0x7f0000000140)="48c98ff8af6817ea53399b92a7cbc5a82c1049c77805321d5585e58b1eaa19f43d4a9323aa25df40fe507c226d0a24abd5a289022daa5b8162269d88af0e4faa75410a17cb3474721bc3a7591810b38ff110d429aa403481c31efde29c62f0e69f23428a28a709490d8f91a838e0d0e346e5186e216ba90e812588cbd0d13466428f3025c9b70544fb3c9f7d4a28ecc130a342bf60a502f28b8828b24666336434d7277ded4c231f984a9be2c0e6eb88bf701ea2406b05aa8cb0d8a14b9913bfcb", 0xc1}, {&(0x7f0000000240)="8fd10c2ac9355288f5df7a95a12c7eaaf972ec6d3e2a40705fda9a05fa2b6af8276f40940a6159baf7deaade0a68c1814c07c7d6a53bda50d8920984a27ab4878bdb3d3d9b63f665772a1ec7ec3ee65c491ab4c7fdc64f1da623724b7af83c35008a2a51f97c6d45ac0e86a6b2aeb3a5370e493442df7ac4de14e726ab2e5d18f416b0b9dcf17969f153494a0c7aeb77cb997a0a6475440d420880d6245e47cf9de11aa944971691407e9ebc02ad30e3a35a54e946396afc5c1901ef3aa718fdb27c891e799aba980d855be4d5a4e99bd4640758da4b7a2ab9647da35123334e65cdea6052d71510df7c42f304231e70a2e95499d05d", 0xf6}, {&(0x7f00000003c0)="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", 0x1000}, {&(0x7f00000013c0)="046fd6d1ff868e04a7158fe13852680542333452451a917ae3b7f189cb7053dffab43a55f38315bc23bbd0513f734501f40b6cf4f1e9ce836fc4de4283867af89fa4be8794adab7af881f2c2fe2d165272b2479f38df99e4ed09b7512c4369bfc8eeca5189ec6966dbec7dd51d8a75bbcd1f46ca6d15f3ede62914b476f8946691f94f1366184564aeacc427df829cd740", 0x91}, {&(0x7f0000001480)="0c96f24d6318161c031ab7a2db199b7b04cec9876eb3d25ec3b851bca7a962d8f74fceb75c185ef66d6859d3ba543e724beadcb1e697212cc83161062c580f9b19575700b49f3a3e2c57c587abdee977637212d9556e021fa84404b7380d159e77bba284859bed4738778e305b83b71fb50b6bd36e573d925575c73bdefd742efe778c0ad0ab123396eaa56834eda2ec2804f1795e66cf01dbc279e9858b79ce8523428eb56ff06255636606077a695c8a4e3437daedeaa40bdc79", 0xbb}, {&(0x7f0000001540)="3207fd671fb02ac4a741c38bcccb97dfa3911c45f7be03fac4c448e28509428991eff5b885ddab3c44eb88b5b19c693d6de34c490edc7e80b95f84dac30c150151983287b639c80ee352cc70dbb6b4072508b0633cb4ad50ebb052bd7f38e2f524789e7134f40550aadc3b5d233bdce1765bd44b92359057cb2e60d56c56bce983aa96949902f4aab33c1d6639ac9384cbc47cc43ea9090d08a6798f37ba7af3d0179041275434026010ae8b9a691a1e465fe180beca7698b68bc1e1e5fcd2b4c2a53055e6223ca141dffe997ffa755f900fcedea0", 0xd5}, {&(0x7f0000001640)="11c86a564807a30ca3f5bed1ec9debdfeaaa5fe2b500fda4e7cc41a4eb47625fe8c2dab987dafe2763c9ce92755375e3acb39c8b6d7dbeeba6328e8b6cc7c6b9a6e0942c900efecb31e9acadbfdb76f4838f349cc280be7dde85720b75a8997c8d835fcdb6a5a7d6315fcc1bcd7ea15cc33de6fed363b1d488e646dd01afbabad1e27fe2c24e69fba75de7494729be64a217f4bc7c4726ac46ae6507d710e08325c767b018f05a22ace370c839795ea50c4226f53cfe500cfceac2dcf847afb8d292bfba3e7ae08b3f", 0xc9}, {&(0x7f0000001740)="12a2c11f2a0bc0313212d4166ed5e659c89607076123c9004842127df63eafb0371be3d58e24f31ab4a05110270d900d06ccba5dcd0a1160a0ab5284fba96725de54c1a0073d202fdef3e58c830668d0aa420beefe92ef639aee0d13435e88e42971e24fa6203a68eae25db64718", 0x6e}, {&(0x7f00000017c0)="e4aab276022963c74b7a321aa5a91a953c73d9ed3cca3995c4fca0b859ed9d271e4145f55f51ad86480c374b63a8b4992a188adfe2e6c6d4be1f1032bcad0052a76b8c01cf195f4de939e3db854e658e2b7461fc946d4bae5a2d0c8dc3a2df084a248228ebfa", 0x66}, {&(0x7f0000001840)="d0b89b3c67eae5834c246fae7c194d812ec805f92c7fa4b7fa1804901cea015100a1a42f717915c055920b9e029b70f3810593ef3b9623bff3add07cc83f691408f88e0c471b4dcee7b1e49c80ec3b242488d9cb8a42e5c872af03eff960717189d4bbbea2290ffb766d9aeb714a0c332f1e49776ea5cfe762c94681cd57ea58e7b6a414478f25de446cffad1d89ccb50c547225de46aea00999da68022065bc971f5c776eba5ca285ec91749ca85d3dab0b42e883493dfa0584a157931240", 0xbf}], 0xa, &(0x7f00000019c0)=[@rights={{0x28, 0x1, 0x1, [r1, r1, r0, r2, r3, r0]}}], 0x28, 0x40000}}, {{&(0x7f0000001a00)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001b40)=[{&(0x7f0000001a80)="b3cd927d2a3005aa3fe3600815af1bda2fba0dea61e5ce33e532754cd7f60642f8146e06bbc8aa3853aee6e763c7deb8923741d68accc128e822159472220d052e62bc4522b1e25d6a306d925f74e1d771bf7ec2f289f31b5cd4a7b0a2269c3bb01cb1f72bfd1591db5d07b754c673a0938774d4a0c766583aff221a629f37057a587aad17facd8a", 0x88}], 0x1, &(0x7f0000001d80)=[@cred={{0x1c, 0x1, 0x2, {r4, r5, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r6, 0xee00, r7}}}, @cred={{0x1c, 0x1, 0x2, {r8}}}, @rights={{0x30, 0x1, 0x1, [r1, r0, r9, r0, r10, r11, r0, r12]}}], 0x90, 0x90}}], 0x2, 0x20000000)

[  132.556971] audit: type=1400 audit(1756605203.625:8): avc:  denied  { open } for  pid=3870 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  132.559845] audit: type=1400 audit(1756605203.625:9): avc:  denied  { kernel } for  pid=3870 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  132.567977] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[  132.586615] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.587167] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.592006] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
01:53:23 executing program 7:
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc9c28d8f09e68400, @perf_config_ext={0x9b2}, 0x800, 0x3, 0x0, 0x0, 0x1, 0x5, 0x5, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_SETVESABLANK(r0, 0x4bfa, &(0x7f00000000c0))

[  132.649737] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.650350] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
01:53:23 executing program 7:
bind$unix(0xffffffffffffffff, &(0x7f0000000040)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
r0 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x7)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f00000001c0)={0x4, 0x1}, 0x4)
setsockopt$packet_tx_ring(r2, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x1, 0x400, 0x4}, 0x1c)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000200)={0xa, &(0x7f0000000280)=[{0xb1, 0x0, 0x0, 0x80000001}, {0x6}, {0x1, 0x0, 0x6, 0xd36f}, {0xf6e4, 0x4, 0xf6, 0x2}, {0x2, 0x1, 0x0, 0xb54f}, {0x8000, 0xff, 0x8, 0x6}, {0x576, 0x0, 0x2, 0x1}, {0x0, 0x0, 0x40, 0x14a}, {0x99, 0x37, 0x8}, {0x80, 0xfb, 0x0, 0x53c}]}, 0x10)
connect$unix(r1, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
ftruncate(r0, 0x8800000)
connect$unix(0xffffffffffffffff, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e)

[  132.749152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.749898] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.761887] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.762487] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
01:53:23 executing program 7:
shmctl$IPC_STAT(0xffffffffffffffff, 0x2, &(0x7f00000000c0)=""/179)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040))
r0 = shmget$private(0x0, 0x4000, 0x40, &(0x7f0000ff9000/0x4000)=nil)
shmctl$IPC_STAT(r0, 0x2, &(0x7f00000001c0)=""/49)
symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00')
syz_emit_vhci(&(0x7f0000000180)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x3, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_le_credits={{0x16, 0x40, 0x4}, {0x4, 0x1dc}}}}, 0x11)

01:53:23 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x3, 0x6)
setsockopt$bt_hci_HCI_TIME_STAMP(r1, 0x0, 0x3, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r0)
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x5c, r2, 0x5, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_SSID={0x1a, 0x34, @random="d9fd026932e9f2bf1d4bc9ae5296a2dd39edbbf11acf"}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_IE={0x18, 0x2a, [@cf={0x4, 0x6, {0x1, 0x80, 0x2800, 0x7}}, @sec_chan_ofs={0x3e, 0x1, 0x3}, @mesh_config={0x71, 0x7, {0x1, 0x1, 0x0, 0x20, 0x1, 0xcb}}]}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8805}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=ANY=[@ANYBLOB="5000000008021100000108021100000008021100"/30], 0x36)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r4, &(0x7f0000006100)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r4, 0x89f4, &(0x7f0000000540)={'syztnl0\x00', &(0x7f0000000240)={'ip6_vti0\x00', 0x0, 0x4, 0x80, 0x10, 0x8000, 0x8, @mcast2, @empty, 0x80, 0x40, 0x6, 0x9b}})
nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, &(0x7f0000000380))
clock_getres(0x3, &(0x7f0000000000))
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={@wo_ht={{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e)
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=@mgmt_frame=@assoc_resp={@wo_ht={{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void}, 0x28)

[  132.847776] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.848351] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.892990] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.893598] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.958504] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.959150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
01:53:24 executing program 1:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000002980)={&(0x7f0000000000)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x3}, 0x80, &(0x7f0000002900)=[{&(0x7f0000000080)="8b2ded54cba4e09e8c35aa6e8b52a847338fbd49d0fbc00613f01d9bb3bf68429d8c84bfab36c1248d6e5ce10e381c0b4b6c1a361fecf267cf422ba657ee2dd0a84c40655ab8a3b3e60985139ff13400b77f7c428d9405e8e2d59ab5cb3c325612410083c6e7788dad864e8b79b57323f5d8e9e9c6f8f0757bd21beef0c4120903ab9dd1e1dbac3167ea7924c197ad6d543934ccb0857b9a478b3abe81f4dce8a992c6deb2426421a33cec25f67471", 0xaf}, {&(0x7f0000002800)='Y', 0x1}], 0x2, &(0x7f0000002940)=[{0x10}], 0x10}, 0x480d0)

01:53:24 executing program 6:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlock(&(0x7f0000ffe000/0x1000)=nil, 0x1000)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x9c, 0x7, 0xff, 0x45, 0x0, 0xffffffffffff2e5b, 0x29209, 0x7, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, @perf_config_ext={0x2, 0x9}, 0x8, 0x604, 0x231f, 0x4, 0x1, 0x3, 0x1f, 0x0, 0x1}, 0xffffffffffffffff, 0xa, r0, 0xa)
madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x15)

[  133.020383] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.021045] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
01:53:24 executing program 1:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
r0 = eventfd2(0x0, 0x0)
io_submit(0x0, 0x2, &(0x7f00000007c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x0, r0, 0x0}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])

[  133.082797] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.083385] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.181474] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  133.189865] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.190477] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.213538] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  133.213963] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.214887] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.214975] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  133.259528] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.260187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.524703] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  133.580767] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
01:53:34 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000000000/0x2000)=nil, 0x2000)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = socket$unix(0x1, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000200)={0x2, &(0x7f00000001c0)=[{0xb1, 0x0, 0x0, 0x80000001}, {0x6}]}, 0x10)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r2, &(0x7f0000006100)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x1, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000005c0)={0x0, <r3=>0x0}, &(0x7f0000000600)=0xc)
getresgid(&(0x7f0000000640)=<r4=>0x0, &(0x7f0000000680), &(0x7f00000006c0))
r5 = fork()
ptrace(0x10, r5)
ptrace$setsig(0x4203, r5, 0xffffffffffffffe0, &(0x7f0000000340)={0x15, 0x9, 0xfffffffc})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000700)={{{@in6=@empty, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@remote}}, &(0x7f0000000800)=0xe8)
getgroups(0x1, &(0x7f0000000840)=[<r7=>0x0])
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000880)=<r8=>0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, <r9=>0x0}, 0x1100)
setfsuid(r9)
recvmmsg$unix(r0, &(0x7f0000005f00)=[{{&(0x7f0000001040), 0x6e, &(0x7f0000002340)=[{&(0x7f00000010c0)=""/4096, 0x1000}, {&(0x7f00000020c0)=""/210, 0xd2}, {&(0x7f00000021c0)=""/127, 0x7f}, {&(0x7f0000000300)=""/29, 0x1d}, {&(0x7f00000026c0)=""/4096, 0x1000}, {&(0x7f0000002240)=""/219, 0xdb}], 0x6, &(0x7f00000023c0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r10=>0x0}}}], 0x40}}, {{&(0x7f0000002400)=@abs, 0x6e, &(0x7f0000002480)=[{&(0x7f00000036c0)=""/4096, 0x1000}], 0x1, &(0x7f00000024c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x68}}, {{&(0x7f0000002540)=@abs, 0x6e, &(0x7f00000025c0)=[{&(0x7f00000046c0)=""/4096, 0x1000}], 0x1, &(0x7f0000002600)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}, {{&(0x7f00000056c0), 0x6e, &(0x7f0000005980)=[{&(0x7f0000005740)=""/4, 0x4}, {&(0x7f0000005780)=""/97, 0x61}, {&(0x7f0000006140)=""/4096, 0x1000}, {&(0x7f0000005800)=""/187, 0xbb}, {&(0x7f00000058c0)=""/144, 0x90}], 0x5, &(0x7f0000005a00)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x80}}, {{0x0, 0x0, &(0x7f0000005d40)=[{&(0x7f0000005a80)=""/109, 0x6d}, {&(0x7f0000005b00)=""/122, 0x7a}, {&(0x7f0000005b80)=""/38, 0x26}, {&(0x7f0000005bc0)=""/247, 0xf7}, {&(0x7f0000005cc0)=""/128, 0x80}], 0x5}}, {{0x0, 0x0, &(0x7f0000005ec0)=[{&(0x7f0000005dc0)=""/17, 0x11}, {&(0x7f0000005e00)=""/123, 0x7b}, {&(0x7f0000005e80)=""/20, 0x14}, {&(0x7f0000007140)=""/4096, 0x1000}], 0x4}}], 0x6, 0x80000021, &(0x7f0000006080)={0x77359400})
sendmmsg$unix(r0, &(0x7f0000000f80)=[{{&(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000180)=[{&(0x7f0000000080)="4a1293ba76ddf3bf4ab037907ba06f1b88788a08eddaf687e52acb46285e", 0x1e}], 0x1, 0x0, 0x0, 0x8080}}, {{&(0x7f0000000240)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000540)=[{&(0x7f00000002c0)="db7975192094abe0414ad820a1f70e90ff6716b9cb90755cf9a43dcfc5bfc3656917b9aa64b6cd509e4f49e76dbc", 0x2e}, {&(0x7f0000008140)="90978c80284c6b68d908ceff6c69eefa1cf8ec06bae17806f12c154cd599402c6daf1d80c48f9adc5263f0fe407c8d740bf499a0666d1e78e86444dfde8e4bb3976444f6da9209e48ea5045f6b5e89c9e3769f5bb0e48fa8af45e7fd8b6ad608cdf1933b3b5856c6a5fbd8ce03eb5d290c06b316bd6e340b06cacf8a99a76769762537c2e83a755ebbcdbba96cd5dc427bcb6260ebf742188fd49c285acbd66854faf143c924fb72fb87b0", 0xab}, {&(0x7f0000000340)="fbd58dfd28a4fce68201e5e53ee1c88b17d0eb26e838cd01a3908902502a5814b83a2cdb1c10c12dfef99989364c0dcb07ff9d16e2f29023c1ba1f7b346f237c9a83deb536c377449e98c58351e416d743ab972b8b5bbfec5c86a35397055650c67748a55f2dbdb641ca38eefed7c4504305b38900ed10545fa183e5b48b196ff83a35dbe337b20400070694c16c211861", 0x91}, {&(0x7f0000000400)="4e2151ac0ce8712e059f62147895d45bc96e6ffaae0fe7e752e0cee59e3f8053bef5b4efeb8a9de64d9bf09daff9de99ca52dd8f1d", 0x35}, {&(0x7f0000000440)="8de68121762390c401a8de7be47336db71fa6c914f23e0fdf1eb38e847c132e6ebc04a3de11f025ccd8b007d3a07c31c845f2c6995d4a9339d88c8d86351a12f8346fea2971e5020b3a1117ea50a13fa46e1b167a44951d79221b3cec4a4375627142dea2ffee23b97082958", 0x6c}, {&(0x7f00000004c0)="6f493418dd23305c46dce13249c99ce24dc2d7e5cbe1101bdec6543c2876a74a9e7385766003b96484d3dd0c2daedde5ab800e09c2a14c31026e267a71ab7168ce51ceca37875899d70ebc5bcff96151c8ac606d02753e180c5e762e151290a778677f86d8a0915f8af695381df2cb35ab384f2de49231a8c61d7923", 0x7c}], 0x6, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r10, r7}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r3, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r4}}}, @cred={{0x1c, 0x1, 0x2, {r5, r6, r7}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r8, r9, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}], 0xe0, 0x40000}}, {{&(0x7f00000009c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000000f00)=[{&(0x7f0000000a40)="fe70a2d145ceeafe32315216c22848711bd90eec526660b5305f855656f6eb7f5ec1d95605753bd34f58df0225ca19b6d2ed619c5dc0ef892889cdbebdbb1e8eda9e61b9eff25ee9366f3f35f6297637d3bc527927bc3905a7e452355f4f1174cd34316f583f4d5abd2456235ce0da0f622c43a0c22da1e1e09676833914de99f1a1c7ebbbf5116f77617796d348894ecd6541697b0dcc0b0d0de65c8727a2d66bddc03de31f006090144831bda96aebd3aa15c03ee6f0f7a5e699b414ec774161e30ece33e6dd", 0xc7}, {&(0x7f0000000b40)="c8ede6e245143d", 0x7}, {&(0x7f0000000b80)="42e63a3e57df8a54ca194f189283741566cbecf5", 0x14}, {&(0x7f0000000bc0)="8ed64bd9e10161d17de93748e74b44e0b94c56749978035dcbea7db3e78f7c523d9beb24ae7b90a92776744f9adf0f7d486390288f68592f5ab2c5d8db055f9d35298fd1a3c866de3e1b113544ebe4eae96d2e9d4de9c213a8a7a9ca9d282f838c306be61a689f260786e5b9db328c6b95b3fee8dadab328f0acf5c312a3ff2936197f5b2313eaedc716a57e8ba394745045688bb7daf7db0259fa67cc4057e14345fe03c9df473370734113fe5f47af36cf9e19ccd37c550d06bc9d4d9c0f11992708945ed61c21", 0xc8}, {&(0x7f0000000cc0)="3445269c5f16a7675d728d2003d21661bcccd6783f685ba54fd149467707317855f1a3999eaeac2295cfb4419a4bedd8d17a9d0ec36c05f253f04d49207a3935882c67721ee3f08b27cf933d8021cade287a0f8aa3ab9e2ffcda40b55e3ba6f9655b8eb735e950034bb77bb9fb78dbbf87c5ec1daf2c485242544e46d17e031d9e307a3ce4841f84413760bdb3ba151a497fef8432c12a88b770a063482023921dde83d87fbb92ad32e48a0a706bd570e4eb0c84a22dbefc7004b4e8a07b560cabf3722956802d04ffb9e4ec41f33c5179cee482979a1a5e1e5da53c9438c349848f560e159ffe638cde6840", 0xec}, {&(0x7f0000000dc0)="d12a4a6e9e7ca65f46d6ed8926f67dc93fc14532ee4571e9387c6193078b7954f547f2697dc0bcf68277bf9fd0c1c5ffb7429c634cfc787d393f4172113133fd43e7cc521a2f71f636706235f5ab1559bae3de88846a4b93a8c9bfcd0d86039a3996", 0x62}, {&(0x7f0000000e40)="a3db8c5a76fa79a9febe07bbd5ce61a83fb79816715dbd4f8491218466316356a41ccc9618882ce3cd3d5e15fddfa577717a45986ad5d7c35b3749f013f60c43cabbd0f8664398313a9df25e0195c4d03e7e179f213074fd2e339dd779ac5bd6161aa6b65cad753431e6e0250bc3fa8acd06bde68bd85de34352402fe8b0520f5e800ffea8c81fc32b5d05719665b2ce6c04c8b7ab071fb8e43be18ee6adbfda9b450ae57ef57d8e4787081bad5cd6", 0xaf}], 0x7, 0x0, 0x0, 0x20000002}}], 0x3, 0x0)

01:53:34 executing program 1:
r0 = syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x1100)
setfsuid(r1)
statx(r0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x10, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x2302450, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@version_9p2000}], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '@\'%#@'}}, {@euid_eq={'euid', 0x3d, r1}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'sysfs\x00'}}, {@uid_lt={'uid<', r2}}, {@smackfsdef={'smackfsdef', 0x3d, '\\'}}]}})
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000)='sysfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000540)='qnx6\x00', 0x44000, &(0x7f0000000580)='ext3\x00')

01:53:34 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = fork()
ptrace(0x10, r0)
r1 = socket$unix(0x1, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000200)={0x2, &(0x7f00000001c0)=[{0xb1, 0x0, 0x0, 0x80000001}, {0x6}]}, 0x10)
recvmmsg$unix(r1, &(0x7f00000064c0)=[{{&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000001440)=[{&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/4096, 0x1000}], 0x2}}, {{&(0x7f00000024c0), 0x6e, &(0x7f0000002780)=[{&(0x7f0000002540)=""/6, 0x6}, {&(0x7f0000002580)=""/214, 0xd6}, {&(0x7f0000002680)=""/211, 0xd3}], 0x3, &(0x7f00000027c0)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}}, {{0x0, 0x0, &(0x7f0000003a40)=[{&(0x7f0000002800)=""/4096, 0x1000}, {&(0x7f0000003800)=""/149, 0x95}, {&(0x7f00000038c0)=""/111, 0x6f}, {&(0x7f0000003940)=""/233, 0xe9}], 0x4}}, {{&(0x7f0000003a80), 0x6e, &(0x7f0000003e40)=[{&(0x7f0000003b00)=""/143, 0x8f}, {&(0x7f0000003bc0)=""/180, 0xb4}, {&(0x7f0000003c80)=""/228, 0xe4}, {&(0x7f0000003d80)=""/171, 0xab}], 0x4}}, {{0x0, 0x0, &(0x7f0000004ec0)=[{&(0x7f0000003e80)=""/62, 0x3e}, {&(0x7f0000003ec0)=""/4096, 0x1000}], 0x2}}, {{&(0x7f0000004f00)=@abs, 0x6e, &(0x7f00000063c0)=[{&(0x7f0000004f80)=""/71, 0x47}, {&(0x7f0000005000)=""/148, 0x94}, {&(0x7f00000050c0)=""/123, 0x7b}, {&(0x7f0000005140)=""/178, 0xb2}, {&(0x7f0000005200)=""/44, 0x2c}, {&(0x7f0000005240)=""/195, 0xc3}, {&(0x7f0000005340)=""/25, 0x19}, {&(0x7f0000005380)=""/40, 0x28}, {&(0x7f00000053c0)=""/4096, 0x1000}], 0x9, &(0x7f0000006480)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, <r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x40}}], 0x6, 0x40002001, &(0x7f0000006640)={0x77359400})
ptrace$setsig(0x4203, r0, 0xffffffffffffffe0, &(0x7f0000000340)={0x15, 0x9, 0xfffffffc})
perf_event_open(&(0x7f0000006740)={0x0, 0x80, 0xd9, 0x6, 0xf, 0x80, 0x0, 0x3f, 0x2, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x8001, 0x2, @perf_config_ext={0x6, 0x20}, 0x53002, 0x4, 0x1000, 0x4, 0x1, 0x3, 0x7000, 0x0, 0x8001, 0x0, 0x1}, r0, 0x2, 0xffffffffffffffff, 0x2)
r4 = fork()
ptrace$setsig(0x4203, r4, 0xffffffffffffffe0, &(0x7f0000000340)={0x15, 0x9, 0xfffffffc})
clone3(&(0x7f0000000340)={0x20002000, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), {0x7}, &(0x7f0000000180)=""/180, 0xb4, &(0x7f0000000240)=""/177, &(0x7f0000000300)=[r0, r4, 0x0], 0x3}, 0x58)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000001480)=[{0x0}, {0x0}], 0x0, &(0x7f0000010d00)=ANY=[])
r5 = openat$sr(0xffffffffffffff9c, &(0x7f0000006680), 0x101800, 0x0)
bind$unix(r5, &(0x7f00000066c0)=@file={0x0, './file0\x00'}, 0x6e)
io_setup(0x8, &(0x7f00000067c0)=<r6=>0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r3, 0xc0189371, &(0x7f0000006800)={{0x1, 0x1, 0x18, <r7=>r2}, './file0\x00'})
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000006940)='/sys/class/spi_host', 0x220001, 0x11)
io_cancel(r6, &(0x7f0000006980)={0x0, 0x0, 0x0, 0x2, 0xffff, r7, &(0x7f0000006840)="e00f44c6e52c7217e3d9c1f98a66e43aa451b07e5a558a975781a6bca3f9b55452c624f5d62210842aebf3cffbe588681906534cc8592b61f994ae9542beec6fe415c124d5f4af156f260a99a702c59b5a727d0dbfd8bfd7ba932f6174e0514a1590fed36e22f21ea9823091d5f9057533e17dd748f6d40df5329492d62eebd048b7e9d817e88bebc0f32e709f9f21834cdd92c63ad8b8bddcc63665ecf0c5566e4280e4e710586fc6533d146750591333224475e375fc10e847b6a3a33d602ffbc18cdf3c1a1a5ff17ae8008ed436c92e2fea8d96b9fa87e52fc4ba4ebc2e890d7f0051f114faa9d2aff97006ff2dabb0e46e4488f15c", 0xf7, 0x401, 0x0, 0x2, r8}, &(0x7f00000069c0))

01:53:34 executing program 3:
mlockall(0x2)
mlockall(0x7)
r0 = fsmount(0xffffffffffffffff, 0x1, 0x6)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000000))
mlockall(0x6)
mlockall(0x1)
mlockall(0x0)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x64, 0x0, 0x300, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_MS_ADDRESS={0x8, 0x5, @empty}, @GTPA_FLOW={0x6}, @GTPA_PEER_ADDRESS={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0x23}}, @GTPA_PEER_ADDRESS={0x8, 0x4, @multicast1}, @GTPA_VERSION={0x8}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_MS_ADDRESS={0x8, 0x5, @broadcast}, @GTPA_O_TEI={0x8, 0x9, 0x2}, @GTPA_VERSION={0x8}, @GTPA_O_TEI={0x8}]}, 0x64}, 0x1, 0x0, 0x0, 0x4001}, 0xc0)
mlockall(0x2)
mlockall(0x6)
mlockall(0x4)
mlockall(0x2)
shmat(0x0, &(0x7f0000ffa000/0x3000)=nil, 0x0)
shmat(0x0, &(0x7f0000ffc000/0x3000)=nil, 0x0)
r1 = dup(0xffffffffffffffff)
vmsplice(r1, &(0x7f0000000440)=[{&(0x7f0000000180)="4cbbf6cee04b6c2a2c410be89bfed8612623ef429300574f27258599d3265e4646ff24ab557b6647338d5b618210d910b9aadcb3bdcdf4a9411208d3caa616ee0ff86ce0662f54819a46f55a3b9b5211b9ed362918ccecc0153f65a556e116ea3fe439ec32bae5e011103534b485", 0x6e}, {&(0x7f0000000200)="e63b0edfae2acaf50b29dd7f0eb3ff2c3786196084f22a8f430fc43ec36ce20856a8d664c8a03006d26c90e3c1f54d66284852cedb393c35435b7652ae945ab95e02e7604efba5578618ca9e671154b91a99ff8e5980bae6af838edabf362bcac9a7446057a268af4532c575dee5dbf5c8b55d9d815aafccac5eed1be1410bb1624c84b22600eb8daead1612b7cda410155c0dad02a8f8f6b79a4c189fdc024c5a397fc004457dbb421b1b7131c948ba4201c088b52a3540ffa405021692ea727d906806b6c0d881b99ddabf51cbfb02f45227d782eaabcb86093fff105eb8ab6927340c24ed0d", 0xe7}, {&(0x7f0000000300)="1746e77ffb5ef054ec3bfc717cc02c07269f58dfbe1c4fd43015c481b931", 0x1e}, {&(0x7f0000000340)="d10dccf32497bd40c5bc0c586a83f1109f539fea3fd3a18fdd72235f45eff5b3d1558757ba2752ba2701cdc66512efa62a3b09cc5b44d12a07157c77de99fc6a6a8fb5083c6622563a480be3078415e6fb5cdb12737e92c8293ab4a13e31b92499ccf66ccd19b82696d5749b", 0x6c}, {&(0x7f00000003c0)="3321611523ec39729498df660ff4b428f474075113565a076019be61bea78e0aea357d53afb8ac96f23c7db6caba865adcf43e266e483100d46ee0afeaa5106c7eb5835f2c544f5e250d208291e5e36086f468791d40b8a984aa5f49cb03fa48f1159d860353e82e42680231c5c464ad8b3e6d7f", 0x74}], 0x5, 0x8)
mlockall(0x5)
mlockall(0x2)
r2 = dup2(0xffffffffffffffff, r0)
splice(r2, &(0x7f00000004c0)=0x2, r1, &(0x7f0000000500)=0x1, 0x5a4, 0x8)

01:53:34 executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg(r0, &(0x7f0000000540)={&(0x7f0000000000)=@in6={0xa, 0x3a, 0x0, @empty}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000080)="ee72af93", 0x4}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000000500)=[{{&(0x7f00000000c0)=@tipc, 0x80, &(0x7f0000000600)=[{&(0x7f0000000140)=""/104, 0x68}, {&(0x7f00000001c0)=""/181, 0xb5}, {&(0x7f00000002c0)=""/207, 0xcf}, {&(0x7f00000003c0)=""/167, 0xa7}, {&(0x7f0000000480)=""/114, 0x72}, {&(0x7f0000000580)=""/95, 0x5f}], 0x6, &(0x7f0000000680)=""/77, 0x4d}, 0xa0}], 0x1, 0x0, 0x0)

01:53:34 executing program 5:
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_features={{0xb, 0xb}, {0x4, 0x0, "5c2387b3abf58f4f"}}}, 0xe)
syz_emit_vhci(&(0x7f0000000480)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x5a}, @l2cap_cid_signaling={{0x56}, [@l2cap_cmd_rej_unk={{0x1, 0xff, 0x2}, {0x800}}, @l2cap_cmd_rej_unk={{0x1, 0x3c, 0x2}, {0x2}}, @l2cap_conf_rsp={{0x5, 0xff, 0x33}, {0x4b3, 0x6f1, 0x9, [@l2cap_conf_rfc={0x4, 0x9, {0x3, 0x7, 0x9, 0x2f, 0x0, 0x6dc5}}, @l2cap_conf_ews={0x7, 0x2, 0x62e}, @l2cap_conf_ews={0x7, 0x2, 0x8}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0x2, 0x1, 0x3ff, 0x5, 0x36eb}}, @l2cap_conf_rfc={0x4, 0x9, {0x3, 0x6, 0x4, 0x0, 0x400, 0x1}}, @l2cap_conf_ews={0x7, 0x2, 0x7fff}]}}, @l2cap_move_chan_req={{0xe, 0x4, 0x3}, {0x6, 0x8}}, @l2cap_conn_rsp={{0x3, 0xaa, 0x8}, {0x3, 0x5, 0x2000, 0x6}}]}}, 0x5f)
syz_emit_vhci(&(0x7f0000000200)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x1, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_ecred_reconf_req={{0x19, 0x81, 0xa}, {0x80, 0xf3d, [0x64, 0xc6cf, 0x6]}}}}, 0x17)
syz_emit_vhci(&(0x7f0000000400)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_ecred_reconf_req={{0x19, 0x35, 0x4}, {0xff, 0xfff7}}}}, 0x11)
syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="040f0404001104a8f502c7f56d7b64e8a8de75506f54588e80ba24a23f7c4f6af9aae09bb6ee1c57875aef328ca137ee37f43c9094fc209f4aa96f25caf67c31735e93fbaf989706d7907a36f7eb24ccea7e1b4a268c1a95efcf9a06097204c3d16ca08530b6d73f98b2734c1d2e911118cd20c0aff517f85ded2403fac1fa3aa97c5f02457cb4f25ecc64299a320843ced0eb76f550382844a67188d025ae6304457a9055b0f872d9ee733e47e9d7a2279e1649ea2c1b"], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents64(r0, &(0x7f00000000c0)=""/107, 0x6b)
syz_emit_vhci(&(0x7f0000000240)=@HCI_SCODATA_PKT={0x3, {0xc8}, "cf25badd48517316638c14f00f5c1f8769e66f87246b71388f813c1886477a3b3da490559083756bec1293cac3b667aac4d6931d3091806a0058d4d81faacc7326bc3c2ca990990b4908a0e8a25ae7466e89a3073d7520d5829e12830d6dc231370ab916b9dfb5f678be1cd505690496238d6d8824ce1bbfb9805c892dc32c4e78af477dcbeeb6c315028e4548a2c0f61eb2b8d9251c1d0ae67150bc92"}, 0x15c)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
syz_emit_vhci(&(0x7f0000000440)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}}}, 0x9)
r1 = syz_open_dev$sg(&(0x7f0000002ac0), 0x1ff, 0x0)
syz_emit_vhci(&(0x7f0000000180)=@HCI_VENDOR_PKT, 0x2)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000300)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x0, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_conn_param_update_req={{0x12, 0x3, 0x8}, {0x5ace, 0x8000, 0x2, 0x200}}}}, 0x15)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x3, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_conn_param_update_rsp={{0x13, 0x1b, 0x2}, {0x80}}}}, 0xf)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

01:53:34 executing program 7:
r0 = syz_io_uring_setup(0x22a6, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001700), &(0x7f0000001740)=<r1=>0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3, 0x50, r0, 0x0)
r3 = syz_io_uring_setup(0x2262, &(0x7f0000003a00), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080), &(0x7f0000003ac0))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
r5 = fsmount(0xffffffffffffffff, 0x0, 0xd1)
r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x10b000, 0x0)
ioctl$RNDZAPENTCNT(r6, 0x5204, &(0x7f0000000240)=0x8)
r7 = open(&(0x7f0000000100)='./file0\x00', 0x1414c0, 0x0)
r8 = openat(r5, &(0x7f0000000180)='./file1\x00', 0x8400, 0x20)
fsconfig$FSCONFIG_SET_FLAG(r8, 0x0, &(0x7f00000001c0)='lazytime\x00', 0x0, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000140)=r7, 0x1)
madvise(&(0x7f0000ff8000/0x4000)=nil, 0x4000, 0x0)
io_uring_register$IORING_REGISTER_PROBE(r5, 0x8, &(0x7f00000000c0)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}]}, 0x4)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0x1c, 0x0, r4)
syz_io_uring_submit(r2, r1, &(0x7f0000000040)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x77359400}, 0x1, 0x0, 0x1, {0x0, r4}}, 0x8d)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r3, 0xa, 0x0, r4)

[  143.973911] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#1] SMP KASAN NOPTI
[  143.974818] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  143.975379] CPU: 1 UID: 0 PID: 3974 Comm: syz-executor.0 Tainted: G        W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  143.976268] Tainted: [W]=WARN
[  143.976502] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  143.978116] RIP: 0010:perf_tp_event+0x175/0xe70
01:53:35 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/fib_triestat\x00')
pread64(r0, &(0x7f0000000100)=""/109, 0x6d, 0x5)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r3=>0x0})
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000000)={@loopback, r3}, 0x14)
ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f0000000000)=r3)

01:53:35 executing program 7:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)={0x30, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SCAN_FREQUENCIES={0x14, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0xfffffffc}, {0x8}]}]}, 0x30}}, 0x0)
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)={0x1c, r0, 0x200, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000801}, 0x8000)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x6]}, 0x8, 0x800)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000080)=<r5=>0x0)
r6 = getgid()
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="5575c73d781a0f2f"])
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x200000, 0xd, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736616e0ca00088020000400000004f80000200040000300000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60}, {&(0x7f0000010100)='RRaA\x00'/32, 0x20, 0x800}, {&(0x7f0000010200)="00000000727241610100000007000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010300)="601c6d6b646f736616e0ca00088020000400000004f80000200040000300000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60, 0x3000}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10000}, {&(0x7f0000010500)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10800}, {&(0x7f0000010600)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x11000}, {&(0x7f0000010700)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x11800}, {&(0x7f0000010800)="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", 0x120, 0x12000}, {&(0x7f0000010a00)="2e20202020202020202020100061ec70325132510000ec7032510300000000002e2e202020202020202020100061ec70325132510000ec70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200061ec70325132510000ec70325104001a040000", 0x80, 0x52000}, {&(0x7f0000010b00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x92000}, {&(0x7f0000011000)='syzkallers\x00'/32, 0x20, 0xd2000}, {&(0x7f0000011100)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x152000}], 0x0, &(0x7f0000011200))

[  143.979299] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  143.983612] RSP: 0018:ffff888018c67780 EFLAGS: 00010012
[  143.984932] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90000803000
[  143.986735] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  143.987298] RBP: ffff888018c679f0 R08: ffff88806cf31340 R09: ffffe8ffffd10af0
[  143.987607] =======================================================
[  143.987607] WARNING: The mand mount option has been deprecated and
[  143.987607]          and is ignored by this kernel. Remove the mand
[  143.987607]          option from the mount to silence this warning.
[  143.987607] =======================================================
[  143.987863] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  143.987872] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  143.987883] FS:  00007f4a823ed700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  143.987895] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  143.994600] CR2: 0000001b2cf22000 CR3: 000000001424d000 CR4: 0000000000350ef0
[  143.995161] Call Trace:
[  143.995369]  <TASK>
[  143.995555]  ? lock_release+0xc8/0x290
[  143.995886]  ? __pfx_perf_tp_event+0x10/0x10
[  143.996242]  ? unwind_get_return_address+0x59/0xa0
[  143.996639]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  143.997071]  ? arch_stack_walk+0x9c/0xf0
[  143.997394]  ? __lock_acquire+0x694/0x1b70
[  143.997733]  ? __lock_acquire+0x694/0x1b70
[  143.998076]  ? lock_acquire+0x15e/0x2f0
[  143.998402]  ? __is_insn_slot_addr+0x2e/0x290
[  143.998769]  ? find_held_lock+0x2b/0x80
[  143.999095]  ? __is_insn_slot_addr+0x136/0x290
[  143.999473]  ? perf_trace_run_bpf_submit+0xef/0x180
[  143.999881]  perf_trace_run_bpf_submit+0xef/0x180
[  144.000269]  perf_trace_preemptirq_template+0x259/0x430
[  144.000703]  ? trace_sched_set_need_resched_tp+0xd4/0x110
[  144.001146]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  144.001619]  ? __pfx___resched_curr+0x10/0x10
[  144.001985]  ? find_held_lock+0x2b/0x80
[  144.002310]  ? try_to_wake_up+0x8ae/0x11d0
[  144.002652]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[  144.003062]  trace_irq_enable.constprop.0+0xa6/0x100
[  144.003463]  trace_hardirqs_on+0x26/0x40
[  144.003785]  _raw_spin_unlock_irqrestore+0x2c/0x50
[  144.004187]  try_to_wake_up+0x8ae/0x11d0
[  144.004519]  ? __pfx_try_to_wake_up+0x10/0x10
[  144.004883]  ? plist_del+0x122/0x270
[  144.005188]  ? find_held_lock+0x2b/0x80
[  144.005517]  ? futex_wake+0x474/0x540
[  144.005826]  wake_up_q+0xa1/0x130
[  144.006113]  futex_wake+0x47e/0x540
[  144.006413]  ? __pfx_futex_wake+0x10/0x10
[  144.006746]  ? __lock_acquire+0x694/0x1b70
[  144.007086]  ? file_init_path+0x506/0x770
[  144.007423]  do_futex+0x26d/0x370
[  144.007706]  ? __pfx_do_futex+0x10/0x10
[  144.008031]  ? lock_release+0xc8/0x290
[  144.008348]  __x64_sys_futex+0x1c9/0x4d0
[  144.008676]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  144.009150]  ? __pfx___x64_sys_futex+0x10/0x10
[  144.009520]  ? xfd_validate_state+0x55/0x180
[  144.009881]  do_syscall_64+0xbf/0x360
[  144.010185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.010597] RIP: 0033:0x7f4a84e77b19
[  144.010893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  144.012319] RSP: 002b:00007f4a823ed218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  144.012911] RAX: ffffffffffffffda RBX: 00007f4a84f8af68 RCX: 00007f4a84e77b19
[  144.013468] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4a84f8af6c
[  144.014027] RBP: 00007f4a84f8af60 R08: 000000000000000e R09: 0000000000000000
[  144.014579] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f4a84f8af6c
[  144.015135] R13: 00007ffcee121a3f R14: 00007f4a823ed300 R15: 0000000000022000
[  144.015693]  </TASK>
[  144.015888] Modules linked in:
[  144.016147] ---[ end trace 0000000000000000 ]---
[  144.016149] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#2] SMP KASAN NOPTI
[  144.016515] RIP: 0010:perf_tp_event+0x175/0xe70
[  144.018195] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  144.018552] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  144.019876] CPU: 0 UID: 0 PID: 3978 Comm: syz-executor.5 Tainted: G      D W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  144.021269] RSP: 0018:ffff888018c67780 EFLAGS: 00010012
[  144.023044] Tainted: [D]=DIE, [W]=WARN
[  144.023443] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90000803000
[  144.024035] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  144.024579] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  144.025817] RIP: 0010:perf_tp_event+0x175/0xe70
[  144.026365] RBP: ffff888018c679f0 R08: ffff88806cf31340 R09: ffffe8ffffd10af0
[  144.027066] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  144.027611] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  144.030359] RSP: 0018:ffff88804783f780 EFLAGS: 00010012
[  144.030904] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  144.030908] 
[  144.030915] FS:  00007f4a823ed700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  144.031708] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: ffffc90006833000
[  144.032263] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  144.032529] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000100000190
[  144.033146] CR2: 0000001b2cf22000 CR3: 000000001424d000 CR4: 0000000000350ef0
[  144.034220] RBP: ffff88804783f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc10af0
[  144.034667] note: syz-executor.0[3974] exited with irqs disabled
[  144.035731] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  144.039327] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[  144.040436] FS:  00007fe4b5d69700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  144.041665] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  144.042568] CR2: 00007fe4b8907018 CR3: 000000001f0e7000 CR4: 0000000000350ef0
[  144.043671] Call Trace:
[  144.044087]  <TASK>
[  144.044448]  ? __pfx_perf_tp_event+0x10/0x10
[  144.045141]  ? __is_insn_slot_addr+0x140/0x290
[  144.045858]  ? kernel_text_address+0x5b/0xc0
[  144.046547]  ? __kernel_text_address+0xd/0x40
[  144.047254]  ? unwind_get_return_address+0x59/0xa0
[  144.048032]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  144.048870]  ? arch_stack_walk+0x9c/0xf0
[  144.049515]  ? trace_pelt_se_tp+0xdf/0x130
[  144.050168]  ? __update_load_avg_se+0x428/0xa40
[  144.050906]  ? css_rstat_updated+0x1b8/0x4d0
[  144.051610]  ? __pfx_css_rstat_updated+0x10/0x10
[  144.052374]  ? perf_trace_run_bpf_submit+0xef/0x180
[  144.053151]  perf_trace_run_bpf_submit+0xef/0x180
[  144.053909]  perf_trace_preemptirq_template+0x259/0x430
[  144.054748]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  144.055662]  ? check_preempt_wakeup_fair+0x406/0x950
[  144.056457]  ? wakeup_preempt+0x140/0x2a0
[  144.057101]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[  144.057899]  trace_irq_enable.constprop.0+0xa6/0x100
[  144.058698]  trace_hardirqs_on+0x26/0x40
[  144.059326]  _raw_spin_unlock_irqrestore+0x2c/0x50
[  144.060101]  try_to_wake_up+0x8ae/0x11d0
[  144.060743]  ? __pfx_try_to_wake_up+0x10/0x10
[  144.061458]  ? plist_del+0x122/0x270
[  144.062049]  ? __futex_unqueue+0xda/0x1c0
[  144.062704]  wake_up_q+0xa1/0x130
[  144.063260]  futex_wake+0x47e/0x540
[  144.063847]  ? __pfx_futex_wake+0x10/0x10
[  144.064502]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  144.065309]  ? finish_task_switch.isra.0+0x294/0x840
[  144.066115]  do_futex+0x26d/0x370
[  144.066665]  ? __pfx_do_futex+0x10/0x10
[  144.067285]  ? __pfx___schedule+0x10/0x10
[  144.067950]  __x64_sys_futex+0x1c9/0x4d0
[  144.068589]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  144.069509]  ? fput+0xe7/0x100
[  144.070022]  ? __pfx___x64_sys_futex+0x10/0x10
[  144.070735]  ? ksys_write+0x1a3/0x240
[  144.071352]  do_syscall_64+0xbf/0x360
[  144.071955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.072753] RIP: 0033:0x7fe4b87f3b19
[  144.073326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  144.076089] RSP: 002b:00007fe4b5d69218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  144.077244] RAX: ffffffffffffffda RBX: 00007fe4b8906f68 RCX: 00007fe4b87f3b19
[  144.078340] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe4b8906f6c
[  144.079442] RBP: 00007fe4b8906f60 R08: 000000000000000e R09: 0000000000000000
[  144.080534] R10: 000000000000000e R11: 0000000000000246 R12: 00007fe4b8906f6c
[  144.081634] R13: 00007ffd53a24daf R14: 00007fe4b5d69300 R15: 0000000000022000
[  144.082739]  </TASK>
[  144.083112] Modules linked in:
[  144.083613] ---[ end trace 0000000000000000 ]---
[  144.083613] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI
[  144.083628] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  144.084334] RIP: 0010:perf_tp_event+0x175/0xe70
[  144.085184] CPU: 1 UID: 0 PID: 3974 Comm: syz-executor.0 Tainted: G      D W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  144.086309] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  144.086667] Tainted: [D]=DIE, [W]=WARN
[  144.088488] RSP: 0018:ffff888018c67780 EFLAGS: 00010012
[  144.089929] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  144.090530] 
[  144.090950] RIP: 0010:perf_tp_event+0x175/0xe70
[  144.092233] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90000803000
[  144.092372] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  144.093092] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  144.093657] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012
[  144.096499] RBP: ffff888018c679f0 R08: ffff88806cf31340 R09: ffffe8ffffd10af0
[  144.097059] 
[  144.097063] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[  144.097872] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  144.098433] RDX: ffff88801753d280 RSI: ffffffff818995b7 RDI: 0000000000000191
[  144.098701] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  144.099263] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd10af0
[  144.100379] FS:  00007fe4b5d69700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000
[  144.100940] R10: 0000000000000000 R11: ffff888015c8a098 R12: dffffc0000000000
[  144.102048] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  144.102611] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[  144.103865] CR2: 00007fe4b8907018 CR3: 000000001f0e7000 CR4: 0000000000350ef0
[  144.104427] FS:  00007f4a823ed700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  144.105330] note: syz-executor.5[3978] exited with irqs disabled
[  144.105893] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  144.108573] CR2: 0000001b2cf22000 CR3: 000000001424d000 CR4: 0000000000350ef0
[  144.109149] Call Trace:
[  144.109363]  <IRQ>
[  144.109552]  ? __pfx_perf_tp_event+0x10/0x10
[  144.109924]  ? do_raw_spin_lock+0x123/0x260
[  144.110280]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  144.110664]  ? lock_acquire+0x18c/0x2f0
[  144.110994]  ? lock_release+0x1c7/0x290
[  144.111322]  ? do_raw_spin_unlock+0x53/0x220
[  144.111684]  ? _raw_spin_unlock_irqrestore+0x22/0x50
[  144.112109]  ? try_to_wake_up+0x128/0x11d0
[  144.112465]  ? do_raw_spin_lock+0x123/0x260
[  144.112824]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  144.113210]  ? perf_trace_run_bpf_submit+0xef/0x180
[  144.113620]  perf_trace_run_bpf_submit+0xef/0x180
[  144.114019]  perf_trace_preemptirq_template+0x259/0x430
[  144.114463]  ? read_tsc+0x9/0x20
[  144.114748]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  144.115232]  ? clockevents_program_event+0x135/0x360
[  144.115658]  ? tick_program_event+0xac/0x140
[  144.116028]  ? handle_softirqs+0x16e/0x770
[  144.116383]  trace_irq_enable.constprop.0+0xa6/0x100
[  144.116800]  trace_hardirqs_on+0x26/0x40
[  144.117132]  handle_softirqs+0x16e/0x770
[  144.117473]  __irq_exit_rcu+0xc4/0x100
[  144.117803]  irq_exit_rcu+0x9/0x20
[  144.118098]  sysvec_apic_timer_interrupt+0x70/0x80
[  144.118506]  </IRQ>
[  144.118694]  <TASK>
[  144.118885]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  144.119309] RIP: 0010:make_task_dead+0xa2/0x3b0
[  144.119697] Code: 38 00 85 db 0f 84 21 01 00 00 e8 d9 96 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 27 92 38 00 48 85 db 0f 84 17 01 00 00 <e8> b9 96 38 00 31 ff 65 8b 1d 60 df 48 06 81 e3 ff ff ff 7f 89 de
[  144.121152] RSP: 0018:ffff888018c67f28 EFLAGS: 00000246
[  144.121585] RAX: 0000000000000001 RBX: ffff88801753d280 RCX: ffffffff817c2b86
[  144.122165] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[  144.122739] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[  144.123330] R10: ffffffff8643ac57 R11: 3030303030302043 R12: ffff88801753d280
[  144.123911] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[  144.124493]  ? trace_irq_enable.constprop.0+0x26/0x100
[  144.124925]  ? make_task_dead+0x214/0x3b0
[  144.125272]  ? make_task_dead+0x214/0x3b0
[  144.125620]  ? do_syscall_64+0xbf/0x360
[  144.125950]  rewind_stack_and_make_dead+0x16/0x20
[  144.126357] RIP: 0033:0x7f4a84e77b19
[  144.126669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  144.128160] RSP: 002b:00007f4a823ed218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  144.128780] RAX: ffffffffffffffda RBX: 00007f4a84f8af68 RCX: 00007f4a84e77b19
[  144.129357] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4a84f8af6c
[  144.129934] RBP: 00007f4a84f8af60 R08: 000000000000000e R09: 0000000000000000
[  144.130520] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f4a84f8af6c
[  144.131101] R13: 00007ffcee121a3f R14: 00007f4a823ed300 R15: 0000000000022000
[  144.131683]  </TASK>
[  144.131888] Modules linked in:
[  144.132157] ---[ end trace 0000000000000000 ]---
[  144.132159] Oops: general protection fault, probably for non-canonical address 0xdffffc0020000032: 0000 [#4] SMP KASAN NOPTI
[  144.132538] RIP: 0010:perf_tp_event+0x175/0xe70
[  144.134272] KASAN: probably user-memory-access in range [0x0000000100000190-0x0000000100000197]
[  144.134635] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  144.135976] CPU: 0 UID: 0 PID: 3978 Comm: syz-executor.5 Tainted: G      D W           6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) 
[  144.137418] RSP: 0018:ffff888018c67780 EFLAGS: 00010012
[  144.139263] Tainted: [D]=DIE, [W]=WARN
[  144.139685] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90000803000
[  144.140290] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  144.140864] RDX: 0000000000040000 RSI: ffffffff818995b7 RDI: 0000000000000191
[  144.142135] RIP: 0010:perf_tp_event+0x175/0xe70
[  144.142708] RBP: ffff888018c679f0 R08: ffff88806cf31340 R09: ffffe8ffffd10af0
[  144.143428] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  144.144009] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  144.146825] RSP: 0018:ffff88806ce08b80 EFLAGS: 00010012
[  144.147403] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  144.147406] 
[  144.147413] FS:  00007f4a823ed700(0000) GS:ffff8880e56dd000(0000) knlGS:0000000000000000
[  144.148232] RAX: 0000000020000032 RBX: 00000000ffffffa0 RCX: 0000000000000002
[  144.148804] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  144.149075] RDX: ffff88800a9f3700 RSI: ffffffff818995b7 RDI: 0000000100000190
[  144.149717] CR2: 0000001b2cf22000 CR3: 000000001424d000 CR4: 0000000000350ef0
[  144.150827] RBP: ffff88806ce08df0 R08: ffff88806ce313e8 R09: ffffe8ffffc10af0
[  144.151294] Kernel panic - not syncing: Fatal exception in interrupt
[  145.195408] Shutting down cpus with NMI
[  145.197615] Kernel Offset: disabled
[  145.197908] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---

VM DIAGNOSIS:
01:53:35  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff8880177ef9e8 RCX=ffffffff81e806dd RDX=1ffff11002efdf3f
RSI=ffffffff81e806e7 RDI=0000000000000005 RBP=ffff888049440298 RSP=ffff8880177ef848
R8 =0000000000000000 R9 =fffffbfff0c8758a R10=0000000000000001 R11=00357a79732f7465
R12=ffff8880177ef9f4 R13=0000000000000010 R14=0000000000000001 R15=0000000000000000
RIP=ffffffff81e8070d RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555580b81400 00000000 00000000
GS =0000 ffff8880e55dd000 00000000 00000000
LDT=0000 fffffe2400000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555580b81708 CR3=000000001f0e7000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000a60ce07b00000000cec3662e XMM01=000000000000000003515b82db34ca11
XMM02=0000000000000000333bebdfd0a6a21d XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff888018c670f0
R8 =0000000000000000 R9 =ffffed100134a046 R10=0000000000000038 R11=6666666666662052
R12=0000000000000038 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0
RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f4a823ed700 00000000 00000000
GS =0000 ffff8880e56dd000 00000000 00000000
LDT=0000 fffffe3300000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2cf22000 CR3=000000001424d000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000000000000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=ffffffffffffffffffffffffffffffff XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000