Warning: Permanently added '[localhost]:62538' (ECDSA) to the list of known hosts.
2025/11/15 04:17:16 fuzzer started
2025/11/15 04:17:16 dialing manager at localhost:37161
syzkaller login: [   62.033379] cgroup: Unknown subsys name 'net'
[   62.084169] cgroup: Unknown subsys name 'cpuset'
[   62.097899] cgroup: Unknown subsys name 'rlimit'
2025/11/15 04:17:30 syscalls: 2214
2025/11/15 04:17:30 code coverage: enabled
2025/11/15 04:17:30 comparison tracing: enabled
2025/11/15 04:17:30 extra coverage: enabled
2025/11/15 04:17:30 setuid sandbox: enabled
2025/11/15 04:17:30 namespace sandbox: enabled
2025/11/15 04:17:30 Android sandbox: enabled
2025/11/15 04:17:30 fault injection: enabled
2025/11/15 04:17:30 leak checking: enabled
2025/11/15 04:17:30 net packet injection: enabled
2025/11/15 04:17:30 net device setup: enabled
2025/11/15 04:17:30 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/11/15 04:17:30 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/11/15 04:17:30 USB emulation: enabled
2025/11/15 04:17:30 hci packet injection: enabled
2025/11/15 04:17:30 wifi device emulation: enabled
2025/11/15 04:17:30 802.15.4 emulation: enabled
2025/11/15 04:17:30 fetching corpus: 50, signal 24314/26126 (executing program)
2025/11/15 04:17:30 fetching corpus: 100, signal 34872/38322 (executing program)
2025/11/15 04:17:30 fetching corpus: 150, signal 42576/47594 (executing program)
2025/11/15 04:17:30 fetching corpus: 200, signal 50513/56944 (executing program)
2025/11/15 04:17:30 fetching corpus: 250, signal 55785/63655 (executing program)
2025/11/15 04:17:30 fetching corpus: 300, signal 59345/68625 (executing program)
2025/11/15 04:17:30 fetching corpus: 350, signal 65191/75707 (executing program)
2025/11/15 04:17:30 fetching corpus: 400, signal 69126/80896 (executing program)
2025/11/15 04:17:31 fetching corpus: 450, signal 73248/86184 (executing program)
2025/11/15 04:17:31 fetching corpus: 500, signal 75944/90086 (executing program)
2025/11/15 04:17:31 fetching corpus: 550, signal 80207/95399 (executing program)
2025/11/15 04:17:31 fetching corpus: 600, signal 82537/98933 (executing program)
2025/11/15 04:17:31 fetching corpus: 650, signal 84184/101837 (executing program)
2025/11/15 04:17:31 fetching corpus: 700, signal 89860/108236 (executing program)
2025/11/15 04:17:31 fetching corpus: 750, signal 95315/114391 (executing program)
2025/11/15 04:17:31 fetching corpus: 800, signal 97392/117494 (executing program)
2025/11/15 04:17:31 fetching corpus: 850, signal 98988/120173 (executing program)
2025/11/15 04:17:31 fetching corpus: 900, signal 101614/123612 (executing program)
2025/11/15 04:17:31 fetching corpus: 950, signal 103480/126446 (executing program)
2025/11/15 04:17:32 fetching corpus: 1000, signal 105116/129020 (executing program)
2025/11/15 04:17:32 fetching corpus: 1050, signal 106707/131547 (executing program)
2025/11/15 04:17:32 fetching corpus: 1100, signal 107909/133761 (executing program)
2025/11/15 04:17:32 fetching corpus: 1150, signal 109677/136435 (executing program)
2025/11/15 04:17:32 fetching corpus: 1200, signal 110999/138674 (executing program)
2025/11/15 04:17:32 fetching corpus: 1250, signal 112868/141357 (executing program)
2025/11/15 04:17:32 fetching corpus: 1300, signal 114576/143844 (executing program)
2025/11/15 04:17:32 fetching corpus: 1350, signal 115723/145846 (executing program)
2025/11/15 04:17:32 fetching corpus: 1400, signal 117425/148264 (executing program)
2025/11/15 04:17:32 fetching corpus: 1450, signal 119205/150763 (executing program)
2025/11/15 04:17:33 fetching corpus: 1500, signal 120511/152863 (executing program)
2025/11/15 04:17:33 fetching corpus: 1550, signal 122009/155049 (executing program)
2025/11/15 04:17:33 fetching corpus: 1600, signal 122993/156876 (executing program)
2025/11/15 04:17:33 fetching corpus: 1650, signal 124727/159215 (executing program)
2025/11/15 04:17:33 fetching corpus: 1700, signal 125831/161094 (executing program)
2025/11/15 04:17:33 fetching corpus: 1750, signal 126872/162877 (executing program)
2025/11/15 04:17:33 fetching corpus: 1800, signal 127893/164659 (executing program)
2025/11/15 04:17:33 fetching corpus: 1850, signal 129414/166735 (executing program)
2025/11/15 04:17:33 fetching corpus: 1900, signal 130122/168264 (executing program)
2025/11/15 04:17:33 fetching corpus: 1950, signal 131159/169987 (executing program)
2025/11/15 04:17:34 fetching corpus: 2000, signal 132118/171665 (executing program)
2025/11/15 04:17:34 fetching corpus: 2050, signal 133015/173281 (executing program)
2025/11/15 04:17:34 fetching corpus: 2100, signal 133942/174911 (executing program)
2025/11/15 04:17:34 fetching corpus: 2150, signal 134830/176480 (executing program)
2025/11/15 04:17:34 fetching corpus: 2200, signal 135639/177944 (executing program)
2025/11/15 04:17:34 fetching corpus: 2250, signal 136597/179561 (executing program)
2025/11/15 04:17:34 fetching corpus: 2300, signal 138280/181634 (executing program)
2025/11/15 04:17:34 fetching corpus: 2350, signal 139203/183200 (executing program)
2025/11/15 04:17:34 fetching corpus: 2400, signal 139922/184590 (executing program)
2025/11/15 04:17:34 fetching corpus: 2450, signal 141518/186529 (executing program)
2025/11/15 04:17:34 fetching corpus: 2500, signal 142480/188051 (executing program)
2025/11/15 04:17:35 fetching corpus: 2550, signal 143375/189534 (executing program)
2025/11/15 04:17:35 fetching corpus: 2600, signal 144311/191028 (executing program)
2025/11/15 04:17:35 fetching corpus: 2650, signal 145003/192360 (executing program)
2025/11/15 04:17:35 fetching corpus: 2700, signal 145850/193687 (executing program)
2025/11/15 04:17:35 fetching corpus: 2750, signal 147200/195393 (executing program)
2025/11/15 04:17:35 fetching corpus: 2800, signal 148449/197025 (executing program)
2025/11/15 04:17:35 fetching corpus: 2850, signal 149478/198433 (executing program)
2025/11/15 04:17:35 fetching corpus: 2900, signal 150268/199735 (executing program)
2025/11/15 04:17:36 fetching corpus: 2950, signal 151287/201144 (executing program)
2025/11/15 04:17:36 fetching corpus: 3000, signal 152043/202425 (executing program)
2025/11/15 04:17:36 fetching corpus: 3050, signal 153147/203827 (executing program)
2025/11/15 04:17:36 fetching corpus: 3100, signal 154109/205162 (executing program)
2025/11/15 04:17:36 fetching corpus: 3150, signal 154949/206411 (executing program)
2025/11/15 04:17:36 fetching corpus: 3200, signal 155978/207714 (executing program)
2025/11/15 04:17:36 fetching corpus: 3250, signal 156864/208970 (executing program)
2025/11/15 04:17:36 fetching corpus: 3300, signal 158044/210364 (executing program)
2025/11/15 04:17:36 fetching corpus: 3350, signal 158683/211445 (executing program)
2025/11/15 04:17:36 fetching corpus: 3400, signal 159621/212716 (executing program)
2025/11/15 04:17:37 fetching corpus: 3450, signal 160641/214034 (executing program)
2025/11/15 04:17:37 fetching corpus: 3500, signal 161332/215134 (executing program)
2025/11/15 04:17:37 fetching corpus: 3550, signal 161792/216111 (executing program)
2025/11/15 04:17:37 fetching corpus: 3600, signal 162377/217187 (executing program)
2025/11/15 04:17:37 fetching corpus: 3650, signal 162874/218160 (executing program)
2025/11/15 04:17:37 fetching corpus: 3700, signal 163336/219125 (executing program)
2025/11/15 04:17:37 fetching corpus: 3750, signal 163814/220053 (executing program)
2025/11/15 04:17:37 fetching corpus: 3800, signal 164265/221009 (executing program)
2025/11/15 04:17:38 fetching corpus: 3850, signal 165155/222108 (executing program)
2025/11/15 04:17:38 fetching corpus: 3900, signal 165864/223132 (executing program)
2025/11/15 04:17:38 fetching corpus: 3950, signal 166410/224096 (executing program)
2025/11/15 04:17:38 fetching corpus: 4000, signal 166903/224997 (executing program)
2025/11/15 04:17:38 fetching corpus: 4050, signal 167926/226113 (executing program)
2025/11/15 04:17:38 fetching corpus: 4100, signal 168493/227028 (executing program)
2025/11/15 04:17:38 fetching corpus: 4150, signal 168812/227855 (executing program)
2025/11/15 04:17:38 fetching corpus: 4200, signal 169436/228800 (executing program)
2025/11/15 04:17:38 fetching corpus: 4250, signal 170349/229878 (executing program)
2025/11/15 04:17:39 fetching corpus: 4300, signal 170830/230749 (executing program)
2025/11/15 04:17:39 fetching corpus: 4350, signal 171294/231602 (executing program)
2025/11/15 04:17:39 fetching corpus: 4400, signal 171887/232498 (executing program)
2025/11/15 04:17:39 fetching corpus: 4450, signal 172494/233403 (executing program)
2025/11/15 04:17:39 fetching corpus: 4500, signal 172933/234247 (executing program)
2025/11/15 04:17:39 fetching corpus: 4550, signal 173518/235156 (executing program)
2025/11/15 04:17:39 fetching corpus: 4600, signal 174013/235970 (executing program)
2025/11/15 04:17:39 fetching corpus: 4650, signal 174574/236814 (executing program)
2025/11/15 04:17:39 fetching corpus: 4700, signal 175108/237667 (executing program)
2025/11/15 04:17:39 fetching corpus: 4750, signal 175589/238492 (executing program)
2025/11/15 04:17:39 fetching corpus: 4800, signal 176001/239264 (executing program)
2025/11/15 04:17:40 fetching corpus: 4850, signal 176567/240097 (executing program)
2025/11/15 04:17:40 fetching corpus: 4900, signal 176930/240856 (executing program)
2025/11/15 04:17:40 fetching corpus: 4950, signal 177475/241654 (executing program)
2025/11/15 04:17:40 fetching corpus: 5000, signal 177951/242464 (executing program)
2025/11/15 04:17:40 fetching corpus: 5050, signal 178461/243226 (executing program)
2025/11/15 04:17:40 fetching corpus: 5100, signal 178929/243979 (executing program)
2025/11/15 04:17:40 fetching corpus: 5150, signal 179307/244712 (executing program)
2025/11/15 04:17:40 fetching corpus: 5200, signal 179594/245394 (executing program)
2025/11/15 04:17:40 fetching corpus: 5250, signal 180117/246140 (executing program)
2025/11/15 04:17:41 fetching corpus: 5300, signal 180540/246919 (executing program)
2025/11/15 04:17:41 fetching corpus: 5350, signal 181170/247648 (executing program)
2025/11/15 04:17:41 fetching corpus: 5400, signal 181653/248371 (executing program)
2025/11/15 04:17:41 fetching corpus: 5450, signal 182058/249041 (executing program)
2025/11/15 04:17:41 fetching corpus: 5500, signal 182562/249754 (executing program)
2025/11/15 04:17:41 fetching corpus: 5550, signal 183122/250502 (executing program)
2025/11/15 04:17:41 fetching corpus: 5600, signal 183473/251173 (executing program)
2025/11/15 04:17:41 fetching corpus: 5650, signal 184124/251927 (executing program)
2025/11/15 04:17:41 fetching corpus: 5700, signal 184407/252544 (executing program)
2025/11/15 04:17:41 fetching corpus: 5750, signal 184844/253208 (executing program)
2025/11/15 04:17:42 fetching corpus: 5800, signal 185153/253815 (executing program)
2025/11/15 04:17:42 fetching corpus: 5850, signal 185445/254434 (executing program)
2025/11/15 04:17:42 fetching corpus: 5900, signal 185988/255107 (executing program)
2025/11/15 04:17:42 fetching corpus: 5950, signal 186362/255766 (executing program)
2025/11/15 04:17:42 fetching corpus: 6000, signal 186791/256384 (executing program)
2025/11/15 04:17:42 fetching corpus: 6050, signal 187181/256997 (executing program)
2025/11/15 04:17:42 fetching corpus: 6100, signal 187531/257560 (executing program)
2025/11/15 04:17:42 fetching corpus: 6150, signal 187891/258149 (executing program)
2025/11/15 04:17:42 fetching corpus: 6200, signal 188320/258764 (executing program)
2025/11/15 04:17:43 fetching corpus: 6250, signal 188787/259336 (executing program)
2025/11/15 04:17:43 fetching corpus: 6300, signal 189233/259921 (executing program)
2025/11/15 04:17:43 fetching corpus: 6350, signal 189639/260506 (executing program)
2025/11/15 04:17:43 fetching corpus: 6400, signal 189988/261108 (executing program)
2025/11/15 04:17:43 fetching corpus: 6450, signal 190337/261692 (executing program)
2025/11/15 04:17:43 fetching corpus: 6500, signal 190715/262224 (executing program)
2025/11/15 04:17:43 fetching corpus: 6550, signal 191169/262765 (executing program)
2025/11/15 04:17:43 fetching corpus: 6600, signal 191530/262995 (executing program)
2025/11/15 04:17:43 fetching corpus: 6650, signal 191819/262996 (executing program)
2025/11/15 04:17:43 fetching corpus: 6700, signal 192146/262996 (executing program)
2025/11/15 04:17:43 fetching corpus: 6750, signal 192530/262996 (executing program)
2025/11/15 04:17:44 fetching corpus: 6800, signal 192874/262996 (executing program)
2025/11/15 04:17:44 fetching corpus: 6850, signal 193361/262996 (executing program)
2025/11/15 04:17:44 fetching corpus: 6900, signal 193728/262996 (executing program)
2025/11/15 04:17:44 fetching corpus: 6950, signal 193940/262996 (executing program)
2025/11/15 04:17:44 fetching corpus: 7000, signal 194388/262996 (executing program)
2025/11/15 04:17:44 fetching corpus: 7050, signal 194756/263003 (executing program)
2025/11/15 04:17:44 fetching corpus: 7100, signal 195020/263003 (executing program)
2025/11/15 04:17:44 fetching corpus: 7150, signal 195338/263003 (executing program)
2025/11/15 04:17:44 fetching corpus: 7200, signal 195596/263003 (executing program)
2025/11/15 04:17:44 fetching corpus: 7250, signal 195885/263003 (executing program)
2025/11/15 04:17:44 fetching corpus: 7300, signal 196336/263003 (executing program)
2025/11/15 04:17:44 fetching corpus: 7350, signal 196616/263003 (executing program)
2025/11/15 04:17:45 fetching corpus: 7400, signal 196852/263003 (executing program)
2025/11/15 04:17:45 fetching corpus: 7450, signal 197186/263003 (executing program)
2025/11/15 04:17:45 fetching corpus: 7500, signal 197492/263009 (executing program)
2025/11/15 04:17:45 fetching corpus: 7550, signal 197769/263009 (executing program)
2025/11/15 04:17:45 fetching corpus: 7600, signal 198146/263009 (executing program)
2025/11/15 04:17:45 fetching corpus: 7650, signal 198551/263009 (executing program)
2025/11/15 04:17:45 fetching corpus: 7700, signal 198970/263009 (executing program)
2025/11/15 04:17:45 fetching corpus: 7750, signal 199175/263009 (executing program)
2025/11/15 04:17:45 fetching corpus: 7800, signal 199521/263009 (executing program)
2025/11/15 04:17:45 fetching corpus: 7850, signal 200057/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 7900, signal 200442/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 7950, signal 200723/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 8000, signal 200996/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 8050, signal 201313/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 8100, signal 201671/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 8150, signal 201874/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 8200, signal 202172/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 8250, signal 202516/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 8300, signal 202729/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 8350, signal 202909/263009 (executing program)
2025/11/15 04:17:46 fetching corpus: 8400, signal 203435/263009 (executing program)
2025/11/15 04:17:47 fetching corpus: 8450, signal 203656/263009 (executing program)
2025/11/15 04:17:47 fetching corpus: 8500, signal 203996/263009 (executing program)
2025/11/15 04:17:47 fetching corpus: 8550, signal 204313/263009 (executing program)
2025/11/15 04:17:47 fetching corpus: 8600, signal 204559/263009 (executing program)
2025/11/15 04:17:47 fetching corpus: 8650, signal 204878/263009 (executing program)
2025/11/15 04:17:47 fetching corpus: 8700, signal 205322/263009 (executing program)
2025/11/15 04:17:47 fetching corpus: 8750, signal 205848/263010 (executing program)
2025/11/15 04:17:47 fetching corpus: 8800, signal 206074/263010 (executing program)
2025/11/15 04:17:47 fetching corpus: 8850, signal 206342/263010 (executing program)
2025/11/15 04:17:47 fetching corpus: 8900, signal 206645/263012 (executing program)
2025/11/15 04:17:47 fetching corpus: 8950, signal 206883/263013 (executing program)
2025/11/15 04:17:48 fetching corpus: 9000, signal 207202/263013 (executing program)
2025/11/15 04:17:48 fetching corpus: 9050, signal 207405/263013 (executing program)
2025/11/15 04:17:48 fetching corpus: 9100, signal 207710/263013 (executing program)
2025/11/15 04:17:48 fetching corpus: 9150, signal 208081/263013 (executing program)
2025/11/15 04:17:48 fetching corpus: 9200, signal 208411/263013 (executing program)
2025/11/15 04:17:48 fetching corpus: 9250, signal 209539/263015 (executing program)
2025/11/15 04:17:48 fetching corpus: 9300, signal 210006/263015 (executing program)
2025/11/15 04:17:48 fetching corpus: 9350, signal 210305/263015 (executing program)
2025/11/15 04:17:48 fetching corpus: 9400, signal 210747/263015 (executing program)
2025/11/15 04:17:48 fetching corpus: 9450, signal 210988/263015 (executing program)
2025/11/15 04:17:48 fetching corpus: 9500, signal 211255/263015 (executing program)
2025/11/15 04:17:49 fetching corpus: 9550, signal 211508/263017 (executing program)
2025/11/15 04:17:49 fetching corpus: 9600, signal 211757/263017 (executing program)
2025/11/15 04:17:49 fetching corpus: 9650, signal 211988/263017 (executing program)
2025/11/15 04:17:49 fetching corpus: 9700, signal 212296/263017 (executing program)
2025/11/15 04:17:49 fetching corpus: 9750, signal 212571/263029 (executing program)
2025/11/15 04:17:49 fetching corpus: 9800, signal 212745/263029 (executing program)
2025/11/15 04:17:49 fetching corpus: 9850, signal 213023/263029 (executing program)
2025/11/15 04:17:49 fetching corpus: 9900, signal 213303/263029 (executing program)
2025/11/15 04:17:49 fetching corpus: 9950, signal 213559/263029 (executing program)
2025/11/15 04:17:49 fetching corpus: 10000, signal 213846/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10050, signal 214113/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10100, signal 214445/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10150, signal 214781/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10200, signal 214963/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10250, signal 215182/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10300, signal 215426/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10350, signal 215684/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10400, signal 215998/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10450, signal 216221/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10500, signal 216450/263029 (executing program)
2025/11/15 04:17:50 fetching corpus: 10550, signal 216732/263029 (executing program)
2025/11/15 04:17:51 fetching corpus: 10600, signal 216995/263029 (executing program)
2025/11/15 04:17:51 fetching corpus: 10650, signal 217232/263031 (executing program)
2025/11/15 04:17:51 fetching corpus: 10700, signal 217460/263031 (executing program)
2025/11/15 04:17:51 fetching corpus: 10750, signal 217779/263031 (executing program)
2025/11/15 04:17:51 fetching corpus: 10800, signal 217986/263031 (executing program)
2025/11/15 04:17:51 fetching corpus: 10850, signal 218323/263031 (executing program)
2025/11/15 04:17:51 fetching corpus: 10900, signal 218493/263031 (executing program)
2025/11/15 04:17:51 fetching corpus: 10950, signal 218710/263031 (executing program)
2025/11/15 04:17:51 fetching corpus: 11000, signal 219022/263031 (executing program)
2025/11/15 04:17:52 fetching corpus: 11050, signal 219258/263031 (executing program)
2025/11/15 04:17:52 fetching corpus: 11100, signal 219482/263031 (executing program)
2025/11/15 04:17:52 fetching corpus: 11150, signal 219706/263031 (executing program)
2025/11/15 04:17:52 fetching corpus: 11200, signal 219964/263031 (executing program)
2025/11/15 04:17:52 fetching corpus: 11250, signal 220327/263034 (executing program)
2025/11/15 04:17:52 fetching corpus: 11300, signal 220611/263034 (executing program)
2025/11/15 04:17:52 fetching corpus: 11350, signal 220818/263034 (executing program)
2025/11/15 04:17:52 fetching corpus: 11400, signal 220985/263034 (executing program)
2025/11/15 04:17:52 fetching corpus: 11450, signal 221216/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 11500, signal 221665/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 11550, signal 221872/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 11600, signal 222076/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 11650, signal 222246/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 11700, signal 222447/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 11750, signal 222681/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 11800, signal 222959/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 11850, signal 223156/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 11900, signal 223443/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 11950, signal 223598/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 12000, signal 223787/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 12050, signal 224048/263034 (executing program)
2025/11/15 04:17:53 fetching corpus: 12100, signal 224207/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12150, signal 224390/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12200, signal 224606/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12250, signal 224768/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12300, signal 224954/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12350, signal 225121/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12400, signal 225411/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12450, signal 225707/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12500, signal 225922/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12550, signal 226115/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12600, signal 226282/263034 (executing program)
2025/11/15 04:17:54 fetching corpus: 12650, signal 226510/263034 (executing program)
2025/11/15 04:17:55 fetching corpus: 12700, signal 226764/263034 (executing program)
2025/11/15 04:17:55 fetching corpus: 12750, signal 226968/263034 (executing program)
2025/11/15 04:17:55 fetching corpus: 12800, signal 227150/263034 (executing program)
2025/11/15 04:17:55 fetching corpus: 12850, signal 227344/263034 (executing program)
2025/11/15 04:17:55 fetching corpus: 12900, signal 227563/263034 (executing program)
2025/11/15 04:17:55 fetching corpus: 12950, signal 228222/263034 (executing program)
2025/11/15 04:17:55 fetching corpus: 13000, signal 228488/263034 (executing program)
2025/11/15 04:17:55 fetching corpus: 13050, signal 228647/263034 (executing program)
2025/11/15 04:17:55 fetching corpus: 13100, signal 228861/263072 (executing program)
2025/11/15 04:17:55 fetching corpus: 13150, signal 229053/263072 (executing program)
2025/11/15 04:17:55 fetching corpus: 13200, signal 229244/263072 (executing program)
2025/11/15 04:17:56 fetching corpus: 13250, signal 229595/263072 (executing program)
2025/11/15 04:17:56 fetching corpus: 13300, signal 229883/263072 (executing program)
2025/11/15 04:17:56 fetching corpus: 13350, signal 230174/263082 (executing program)
2025/11/15 04:17:56 fetching corpus: 13400, signal 230413/263082 (executing program)
2025/11/15 04:17:56 fetching corpus: 13450, signal 230632/263082 (executing program)
2025/11/15 04:17:56 fetching corpus: 13500, signal 230877/263082 (executing program)
2025/11/15 04:17:56 fetching corpus: 13550, signal 231118/263082 (executing program)
2025/11/15 04:17:56 fetching corpus: 13600, signal 231330/263082 (executing program)
2025/11/15 04:17:56 fetching corpus: 13650, signal 231577/263082 (executing program)
2025/11/15 04:17:56 fetching corpus: 13700, signal 231855/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 13750, signal 232018/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 13800, signal 232239/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 13850, signal 232447/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 13900, signal 232632/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 13950, signal 232828/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 14000, signal 232985/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 14050, signal 233216/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 14100, signal 233446/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 14150, signal 233650/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 14200, signal 233827/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 14250, signal 234013/263082 (executing program)
2025/11/15 04:17:57 fetching corpus: 14300, signal 234220/263082 (executing program)
2025/11/15 04:17:58 fetching corpus: 14350, signal 234431/263082 (executing program)
2025/11/15 04:17:58 fetching corpus: 14400, signal 234663/263082 (executing program)
2025/11/15 04:17:58 fetching corpus: 14450, signal 234861/263082 (executing program)
2025/11/15 04:17:58 fetching corpus: 14500, signal 235119/263083 (executing program)
2025/11/15 04:17:58 fetching corpus: 14550, signal 235290/263083 (executing program)
2025/11/15 04:17:58 fetching corpus: 14600, signal 235464/263083 (executing program)
2025/11/15 04:17:58 fetching corpus: 14650, signal 235629/263083 (executing program)
2025/11/15 04:17:58 fetching corpus: 14700, signal 235781/263083 (executing program)
2025/11/15 04:17:58 fetching corpus: 14750, signal 235986/263083 (executing program)
2025/11/15 04:17:58 fetching corpus: 14800, signal 236214/263084 (executing program)
2025/11/15 04:17:58 fetching corpus: 14850, signal 236463/263084 (executing program)
2025/11/15 04:17:58 fetching corpus: 14900, signal 236628/263084 (executing program)
2025/11/15 04:17:59 fetching corpus: 14950, signal 236790/263084 (executing program)
2025/11/15 04:17:59 fetching corpus: 15000, signal 236932/263084 (executing program)
2025/11/15 04:17:59 fetching corpus: 15050, signal 237084/263084 (executing program)
2025/11/15 04:17:59 fetching corpus: 15100, signal 237238/263084 (executing program)
2025/11/15 04:17:59 fetching corpus: 15150, signal 237427/263084 (executing program)
2025/11/15 04:17:59 fetching corpus: 15200, signal 237583/263084 (executing program)
2025/11/15 04:17:59 fetching corpus: 15250, signal 237794/263084 (executing program)
2025/11/15 04:17:59 fetching corpus: 15300, signal 238002/263084 (executing program)
2025/11/15 04:17:59 fetching corpus: 15350, signal 238144/263084 (executing program)
2025/11/15 04:17:59 fetching corpus: 15400, signal 238331/263086 (executing program)
2025/11/15 04:18:00 fetching corpus: 15450, signal 238510/263086 (executing program)
2025/11/15 04:18:00 fetching corpus: 15493, signal 238680/263086 (executing program)
2025/11/15 04:18:00 fetching corpus: 15493, signal 238680/263086 (executing program)
2025/11/15 04:18:02 starting 8 fuzzer processes
04:18:02 executing program 0:
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x5, 0x1, 0x800, 0x3, 0x288dba4f}, 0x14)
r0 = clone3(&(0x7f0000000280)={0x200, &(0x7f0000000040)=<r1=>0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=<r2=>0x0, {0x40}, &(0x7f0000000100)=""/203, 0xcb, &(0x7f0000000200)=""/54, &(0x7f0000000240)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x3}, 0x58)
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000300)={r2, 0xee00, 0xee00}, 0xc)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000340), 0x604002, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0xc0c89425, &(0x7f0000000380)={"41f71d4e863a7a30849301b4f18cffb3", 0x0, 0x0, {0x16, 0x2}, {0x0, 0x200}, 0x1000, [0x4, 0x1f, 0x80, 0x80000000, 0x1000, 0x509, 0x6, 0x53, 0x0, 0xffffffffffffffff, 0x1, 0xfffffffffffffffc, 0x200, 0x40, 0x1100, 0x42f]})
r4 = dup2(r3, r1)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000480), 0x488102, 0x0)
readv(r5, &(0x7f0000000700)=[{&(0x7f00000004c0)=""/95, 0x5f}, {&(0x7f0000000540)=""/14, 0xe}, {&(0x7f0000000580)=""/65, 0x41}, {&(0x7f0000000600)=""/92, 0x5c}, {&(0x7f0000000680)=""/85, 0x55}], 0x5)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000780)={0x0, <r6=>0x0}, &(0x7f00000007c0)=0xc)
r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000800), 0x5050c0, 0x0)
getsockopt$SO_COOKIE(r7, 0x1, 0x39, &(0x7f0000000840), &(0x7f0000000880)=0x8)
statx(r4, &(0x7f00000008c0)='./file0\x00', 0x800, 0x2, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000a00)={r2, r6, r8}, 0xc)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r7, 0xc0189371, &(0x7f0000000a40)={{0x1, 0x1, 0x18, <r9=>r5}, './file0\x00'})
r10 = fcntl$getown(r4, 0x9)
write$cgroup_pid(r9, &(0x7f0000000a80)=r10, 0x12)
getsockopt$inet_tcp_int(r4, 0x6, 0x18, &(0x7f0000000ac0), &(0x7f0000000b00)=0x4)
ioctl$BTRFS_IOC_SNAP_CREATE(r5, 0x50009401, &(0x7f0000000b40)={{}, "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"})
r11 = accept4(0xffffffffffffffff, &(0x7f0000001b40)=@nfc, &(0x7f0000001bc0)=0x80, 0x1c0000)
setsockopt$sock_cred(r11, 0x1, 0x11, &(0x7f0000001c00)={r0, r6, r8}, 0xc)

04:18:02 executing program 1:
read$char_usb(0xffffffffffffffff, &(0x7f0000000000)=""/220, 0xdc)
r0 = openat2(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x2080, 0x38, 0xc}, 0x18)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f0000000180))
r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000500), 0xd0400, 0x0)
ioctl$INCFS_IOC_PERMIT_FILL(r0, 0x40046721, &(0x7f0000000540)={r1})
r2 = openat2(r0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)={0x200, 0x0, 0x1}, 0x18)
listxattr(&(0x7f0000000600)='./file0\x00', &(0x7f0000000640)=""/43, 0x2b)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f0000000900))
ioctl$FS_IOC_SETFSLABEL(r3, 0x41009432, &(0x7f0000000940)="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")
setxattr(&(0x7f0000000a40)='./file0\x00', &(0x7f0000000a80)=@known='security.selinux\x00', &(0x7f0000000ac0)='/dev/urandom\x00', 0xd, 0x3)
setsockopt$inet6_tcp_buf(r2, 0x6, 0xe, &(0x7f0000000b00)="11a36e289a703bac50ef074c5cb6ce025c2fd389f0af9ba35c1eea8ed082f2fa31726799d6e08c4daba95675da6782f5da6be5cbeae2c9169c71f16ef9b4a2a264ede06b9f8378149781bf00", 0x4c)
r4 = open(&(0x7f0000000b80)='./file0\x00', 0x40000, 0x24)
getsockopt$inet6_tcp_buf(r4, 0x6, 0x1c, &(0x7f0000000bc0)=""/118, &(0x7f0000000c40)=0x76)
r5 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$BTRFS_IOC_INO_LOOKUP(r5, 0xd0009412, &(0x7f0000000c80))
poll(&(0x7f0000001c80)=[{r0, 0x8200}], 0x1, 0xc00000)
openat2(0xffffffffffffff9c, &(0x7f0000001cc0)='./file0\x00', &(0x7f0000001d00)={0xc8840, 0xd1, 0x1a}, 0x18)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000001d40)={<r6=>r4, 0x8, 0x24, 0x5})
utimensat(r6, &(0x7f0000001d80)='./file0\x00', &(0x7f0000001e00)={{0x77359400}}, 0x0)

04:18:02 executing program 6:
ioctl$CDROM_TIMED_MEDIA_CHANGE(0xffffffffffffffff, 0x5396, &(0x7f0000000000)={0x3, 0x1})
ioctl$CDROMRESET(0xffffffffffffffff, 0x5312)
ioctl$CDROMVOLREAD(0xffffffffffffffff, 0x5313, &(0x7f0000000040))
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, @in_args={0x1}}, './file0\x00'})
ioctl$CDROMREADCOOKED(r0, 0x5315, &(0x7f00000000c0))
mount(&(0x7f0000000b40)=@filename='./file0\x00', &(0x7f0000000b80)='./file0\x00', &(0x7f0000000bc0)='cpuset\x00', 0x10e400e, &(0x7f0000000c00)='^[{\x00')
r1 = syz_open_dev$mouse(&(0x7f0000000c40), 0x21, 0x2800)
r2 = syz_open_dev$sg(&(0x7f0000000c80), 0x6, 0x301280)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000cc0)={{0x1, 0x1, 0x18, <r3=>r2, {0xee00, 0xee01}}, './file0\x00'})
write(r1, &(0x7f0000000d00)="d256755cf134e7bcde4435d770e173db7427214ab9d45f8e34e070a1ef76d21ffd85795165996294338f533afd3dbd4f89538f347b3af42a4088f4b393d2d3408d7d89564b8c51c50d12db6e5be96d0cb286007681dd33d3a3eb75962f0ae52e4e34aa1b3d098ff75dffc671dc272a2bacf6eac5d57d199283cc0f3f02ffc1419b9436672d5c7a21b9a8becc6dc1a7f45d4cd25f92bfd6b714d108da6dd165389e327a7d10f094f0c582d605e381ba0379b8d2b3d7af652a54d42ad0687a4ee23f223f9e510a2ffe42e3839de97a203f6ca9f7c908ef75a0a75157f16a7c768f1667", 0xe2)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000e00), 0x2080, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN(r4, 0x4040942c, &(0x7f0000000e40)={0x0, 0xfffffffe, [0xfffffffffffff84c, 0x3ff, 0x45, 0x200, 0x8, 0x8]})
ioctl$CDROM_LOCKDOOR(r1, 0x5329, 0x0)
fsetxattr(r4, &(0x7f0000000e80)=@known='user.syz\x00', &(0x7f0000000ec0)='/dev/input/mouse#\x00', 0x12, 0x1)
ioctl$DVD_READ_STRUCT(r0, 0x5390, &(0x7f0000000f00)=@copyright={0x1, 0x3, 0x3})
write$P9_RWALK(r3, &(0x7f0000001740)={0x16, 0x6f, 0x2, {0x1, [{0x20, 0x3, 0x8}]}}, 0x16)
ioctl$CDROM_DISC_STATUS(r1, 0x5327)
ioctl$CDROMPLAYBLK(r4, 0x5317, &(0x7f0000001780)={0x80, 0x101})
ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000001800)={0x0, 0x40, 0x0, 0x80, 0x1f, 0x6})

04:18:02 executing program 2:
mq_timedsend(0xffffffffffffffff, &(0x7f0000000000)="1bc8d37aaebb2f8ecea67f22db355dd4669466ec0f586874b11c1ba7a2527c3831748d43f1856c2bbc", 0x29, 0xffffffffffffff8a, &(0x7f0000000040)={0x0, 0x3938700})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x580013ec}}, './file0\x00'})
mq_timedsend(r0, &(0x7f00000000c0)="0719da3991c74665121946b786be01204a894ecee0ae2a4e60418fd52013e77b8f132dbae20efa194e22d112d3cfb0824284d84dba53f7420da75a0b", 0x3c, 0x6, &(0x7f0000000100)={0x0, 0x3938700})
r1 = getpgid(0x0)
mq_notify(r0, &(0x7f0000000140)={0x0, 0xb, 0x1, @tid=r1})
socketpair(0x10, 0x5, 0x10001, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f00000001c0), &(0x7f0000000200)=0x4)
r3 = creat(&(0x7f0000000240)='./file0\x00', 0x0)
mq_timedsend(r3, &(0x7f0000000280)="b2f83f8a12a1a20c711b2a6c432e5404ba9057bd846c0663f4a459aaef72cf20a2c48a98ff87c9b0a5ced2682f8f", 0x2e, 0x6, &(0x7f00000002c0))
r4 = dup3(r3, r2, 0x80000)
ioctl$HCIINQUIRY(r4, 0x800448f0, &(0x7f0000000300)={0x4, 0x6, "1a5fe5", 0x81, 0x8})
bind$bt_hci(r0, &(0x7f0000000340)={0x1f, 0x3, 0x1}, 0x6)
ioctl$BTRFS_IOC_BALANCE(r2, 0x5000940c, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000380)=0x4)
mq_timedsend(r0, &(0x7f00000003c0)="16f95a3829b2b590b12454ad7551e9e8e0fc3ac283c19e2ee3f851b880a73f9655e1f0c5ab15a665a971979eced749f770c5d6d93e14bb763beac1c82f09c36dc17fcd0c130baad3b5fceda05b9de0052359bb691c84b71801140aac623e89a85618a9720561b889528a8693246fa01e6dec82aec4ac6ac54ef98b523a225032dc32663493c5b33ad0555810b29a457ac48fe7b2e0ec43a389957add408d43e95a5a6e8bdca1a27f4890cfdcb3498b3a4125badf8e7f3543c7c09b6a31ae94341abf25ad7727b5623b3a5fec2138ad8f4e4b8cc043c3887b9883b277a1d0d029155880ba44f21f5792", 0xe9, 0x8, 0x0)
getpgrp(r1)
r5 = openat2(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={0x2000, 0x102, 0x4}, 0x18)
write$bt_hci(r5, &(0x7f0000000540)={0x1, @accept_phy_link={{0x436, 0xe1}, {0xc9, 0x0, 0xfd, "1c91c4d3bc97867310970fb8edbc22c05ce2341e914e44101b5a3dabda1f727c8c7cf053689a4499e2f91d9280ea64bf037d929e3b30b31b29b6510b785f6b556bbe20d285e82dc7e595f654299e644fef88696c1145dcecd96666f6e4d9f2b50b10eb6d1fa273940a1179fd816829afa3ae9cb7a0ea85b9c4f1fb96b9ec396545f2302142b5e3ea08ad5f0399efab16e332e42e1957df9309db9308ce3112d525c0cb8d392067561ba730753062bc5c6e536278275ab7bf97e4e360d824f52ccebd36ecb93be5bf4330113b75363453096b53430780592171e14eb5829b"}}}, 0xe5)
bind$bt_hci(r3, &(0x7f0000000640)={0x1f, 0x4, 0x1}, 0x6)
creat(&(0x7f0000000680)='./file0\x00', 0x1a)

04:18:02 executing program 7:
getsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0x4)
recvmmsg(0xffffffffffffffff, &(0x7f00000039c0)=[{{&(0x7f0000000080)=@tipc=@id, 0x80, &(0x7f0000001340)=[{&(0x7f0000000100)=""/4096, 0x1000}, {&(0x7f0000001100)=""/145, 0x91}, {&(0x7f00000011c0)=""/136, 0x88}, {&(0x7f0000001280)=""/173, 0xad}], 0x4, &(0x7f0000001380)=""/139, 0x8b}}, {{0x0, 0x0, &(0x7f0000002540)=[{&(0x7f0000001440)=""/26, 0x1a}, {&(0x7f0000001480)=""/145, 0x91}, {&(0x7f0000001540)=""/4096, 0x1000}], 0x3, &(0x7f0000002580)=""/135, 0x87}, 0x7}, {{&(0x7f0000002640)=@pppol2tpv3={0x18, 0x1, {0x0, <r0=>0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000003940)=[{&(0x7f00000026c0)=""/209, 0xd1}, {&(0x7f00000027c0)=""/99, 0x63}, {&(0x7f0000002840)=""/2, 0x2}, {&(0x7f0000002880)=""/4096, 0x1000}, {&(0x7f0000003880)=""/164, 0xa4}], 0x5}, 0x3}], 0x3, 0x2, &(0x7f0000003a80))
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000003ac0))
getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000003b00)=0x9, &(0x7f0000003b40)=0x2)
bind$802154_dgram(r0, &(0x7f0000003b80)={0x24, @short={0x2, 0xffff}}, 0x14)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000003bc0), 0x20000, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, &(0x7f0000003c00)={'dummy0\x00'})
ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, &(0x7f0000003c40)=0x1000)
getsockopt$IP_VS_SO_GET_SERVICE(r1, 0x0, 0x483, &(0x7f0000003c80), &(0x7f0000003d00)=0x68)
getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000003d40)=0x1, &(0x7f0000003d80)=0x4)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000003dc0)=<r2=>0x0)
r3 = syz_open_procfs(r2, &(0x7f0000003e00)='net/if_inet6\x00')
r4 = syz_open_dev$sg(&(0x7f0000003e40), 0x5, 0x400001)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000003e80)={0x0, 0x1, 0x6, 0x6229})
r5 = openat$null(0xffffffffffffff9c, &(0x7f0000003ec0), 0x40, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f0000003f00)={0xba, 0x10001, 0x1, "9f69c44ae86427080d25f7faaf690a0aa57c597f9daf67515d6ce83f64c556dd5ceaf3b6b94ed8e7ab160f3a0d60e5e80dada659b1a2c47ac0f8e8e5141006e617f2b8055338e23aa1120d66a851a708e6e292372d3b4d9fa17c50115d1b3546ffc5079f0dd40f0a570238972b8808b01225c9834b8add7c38e85a7bc99a081430d8a2ece2ccc78b97761394d773f64eacfefe584c8dd8ccacfb08451cf3e35955fd998b2015031b20f1a0f840afa26328be3de310a29220610d"})
ioctl$AUTOFS_IOC_EXPIRE(r3, 0x810c9365, &(0x7f0000004000)={{0x8001, 0x101}, 0x100, './file0\x00'})
ioctl$SG_IO(r5, 0x2285, &(0x7f00000044c0)={0x0, 0xfffffffffffffffc, 0xed, 0x8a, @scatter={0x2, 0x0, &(0x7f0000004240)=[{&(0x7f0000004140)=""/48, 0x30}, {&(0x7f0000004180)=""/161, 0xa1}]}, &(0x7f0000004280)="a88c16b009dae8b2379c66ff67c517f99b9e388743c135405cf9619d94df0c7ac0551102aa4fc122448fc991cd78802336abbd981bdab2cf0913f9c0d930d62f7dfd32620451e533d25fe8e32b32cea825d0741ce52eb05eb955dc3588bb0973cddf0ffa2419226da6f77d315dabc314dce6b9bd4ec02ac733ac7fd387315b4d92cce496a2f3edd22e6ce0209a9ff99d64cd6e3d3819279b6d21bed53c095ad6f8b3777c13efe4c674d787d0afe81ece07f17cd81c6bea2b3375bff2c3dd110f012fab45beb0694ea273b3e51919796fabc67d0aee994926c2a88edbea87f34fad61ea8e2e95ae43f03fa3e4fe", &(0x7f0000004380)=""/230, 0x6, 0x2, 0x3, &(0x7f0000004480)})
ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000004540)={0xed, 0x4, 0x3, "f897358f411a9876dd5c8490b3616005f28bc4fbb744356826532f095114a8fc25c695f80fe9b564333e78173ee421ae67e696bf2890e739b700eb7a246a657b30efbf211b0ef68f0ec67f05ec69f4a36a1dca5b0e74f446f9d2a46e9bd5ed35f21ec88c77b09dfa8bdc49737c2e4325a68e24ef1e11096ac73eeaaa257977fba5dd004eb817798ec6f3519c62df8e67261e2d37a15439b18e425d92b833558a897a98356d7cbe6963e6165a1ca693f8282dc805607a7484fa62eae51f0b86ad7d55dcf2565285d9ae9c64044d28fe66646963e42ed7d9667ed66ac01739f860a1c36d223a3eeca1e356269ebf"})
sendmsg$TIPC_NL_MEDIA_GET(r3, &(0x7f00000048c0)={&(0x7f0000004640)={0x10, 0x0, 0x0, 0x8008000}, 0xc, &(0x7f0000004880)={&(0x7f0000004680)={0x200, 0x0, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x630}]}, @TIPC_NLA_NET={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x80000001}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xffffffffffffffff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xb87}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x40}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x4}]}, @TIPC_NLA_MEDIA={0x60, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7f}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x800}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1ff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}]}, @TIPC_NLA_PUBL={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4a}, @TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x88}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK={0xac, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x33}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x29f62ef9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff9}]}]}]}, 0x200}, 0x1, 0x0, 0x0, 0x1}, 0x8000)

04:18:02 executing program 3:
getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x18, &(0x7f0000000000), &(0x7f0000000040)=0x4)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000080)=0xffffffffffffffff, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000140)=0x1c, 0x80800)
getsockopt$inet6_tcp_int(r0, 0x6, 0x1b, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000200), 0x20000, 0x0)
getsockopt$inet6_mreq(r1, 0x29, 0x14, &(0x7f0000000240)={@private1, <r2=>0x0}, &(0x7f0000000280)=0x14)
ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f00000002c0)={'vxcan1\x00', {0x2, 0x0, @initdev}})
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000300)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4c, r2})
r3 = pidfd_getfd(r1, r0, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000340)={0x3c, 0x19, '\x00', [@hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @ra={0x5, 0x2, 0x5}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x1}}, @generic={0x40, 0x2e, "2e28f3d850f99b2b67b09993508bb554d16491eb9777198e188224e6658bb1128b599146747f7f3968f032357740"}, @enc_lim={0x4, 0x1, 0x5}, @generic={0x4, 0x42, "5d94a49b7cf8e1b92e9efbd29187a063537072b56ccd6a295970f2d28424d82ffbd06e85386f04d60b4bb53f962b4586fa7a7463e35cd4d7a78b58ff68308b52db6e"}, @ra={0x5, 0x2, 0x4}, @pad1]}, 0xd8)
getsockopt$IP6T_SO_GET_ENTRIES(0xffffffffffffffff, 0x29, 0x41, &(0x7f0000000440)={'mangle\x00', 0xc8, "f2cd369470519f99f5bf0719917e9c6f1853e1ec4d1b46e4626da72eadea48c6aae780cbd08b0743318c8475bcbd389224148d1bb913a9c7680c0f047d25e1a6fa7f989abeec43b17533591d3861fff511bdec18d1418432a53b5a3a8e37975a33863e41cab2347b52d27e6f63ffb81b1adf08abc2dc926c434365996bd036c1013792ce78775f15639ea08ae21b3373f2481d874dda1ffd04c00057ff4f903362998101aef0742e08508cb39a03273b1d3b34c22fee0c8cd256cc1ca50c3f7e1578b49bfbabded7"}, &(0x7f0000000540)=0xec)
ioctl$VFAT_IOCTL_READDIR_SHORT(r3, 0x82307202, &(0x7f0000000580)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r4 = signalfd(r0, &(0x7f00000007c0)={[0xffffffffffff0000]}, 0x8)
getsockopt$inet6_opts(r4, 0x29, 0x3b, &(0x7f0000000800)=""/113, &(0x7f0000000880)=0x71)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000008c0), 0x4)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000009c0)='/proc/asound/seq/timer\x00', 0x0, 0x0)
sendmsg$IPSET_CMD_DEL(r5, &(0x7f0000000b00)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x5c, 0xa, 0x6, 0x5, 0x0, 0x0, {0xc}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_ADT={0x2c, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private2}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x2}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20044080}, 0x44000)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000b40)=0xffffffffffffffff, 0x4)
sendmsg$WG_CMD_GET_DEVICE(r5, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x34, 0x0, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r2}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r2}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x737559315790bc18}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x4008000}, 0x10)

04:18:02 executing program 4:
r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x0, 0x40)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000040)=0x6)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x34)
clock_gettime(0x0, &(0x7f00000000c0)={<r2=>0x0, <r3=>0x0})
clock_gettime(0x0, &(0x7f0000000100)={<r4=>0x0, <r5=>0x0})
clock_gettime(0x0, &(0x7f0000000140)={<r6=>0x0, <r7=>0x0})
write$evdev(r1, &(0x7f0000000180)=[{{0x77359400}, 0x4, 0x2, 0x10000}, {{r2, r3/1000+60000}, 0x2, 0x2, 0x1}, {{r4, r5/1000+60000}, 0x15, 0x7, 0x9}, {{r6, r7/1000+10000}, 0x5, 0x80, 0xfffff5da}, {{}, 0x14, 0x6, 0x6}, {{0x77359400}, 0x17, 0x967, 0x1f}, {{0x0, 0xea60}, 0x17, 0x0, 0x8}, {{0x77359400}, 0xa, 0x9, 0xfffffff7}, {{0x77359400}, 0x17, 0x4}], 0xd8)
clock_settime(0x2, &(0x7f0000000280))
clock_gettime(0x4, &(0x7f00000002c0))
epoll_pwait2(r1, &(0x7f0000000300)=[{}], 0x1, &(0x7f0000000340)={0x0, 0x989680}, &(0x7f0000000380)={[0xfffffffffffffffd]}, 0x8)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r0, 0x40049366, &(0x7f00000003c0)=0x4)
preadv(r1, &(0x7f0000000600)=[{&(0x7f0000000400)=""/37, 0x25}, {&(0x7f0000000440)=""/200, 0xc8}, {&(0x7f0000000540)=""/168, 0xa8}], 0x3, 0x10000, 0x4)
r8 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
ioctl$FS_IOC_SETFLAGS(r8, 0x40086602, &(0x7f0000000640)=0x40000000)
setsockopt$bt_hci_HCI_TIME_STAMP(r8, 0x0, 0x3, &(0x7f0000000680)=0x8, 0x4)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f00000006c0)='/proc/asound/timers\x00', 0x0, 0x0)
r10 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000700))
r11 = accept4$bt_l2cap(r1, &(0x7f0000000740), &(0x7f0000000780)=0xe, 0x80800)
ppoll(&(0x7f00000007c0)=[{r9, 0x2000}, {0xffffffffffffffff, 0x8}, {r8, 0xe7fdca13c2455d71}, {r8, 0x400}, {r1, 0x2388}, {}, {r10, 0x4000}, {r8, 0x3}, {0xffffffffffffffff, 0x36}, {r11, 0x80}], 0xa, &(0x7f0000000840)={0x0, 0x989680}, &(0x7f0000000880)={[0x9]}, 0x8)
ioctl$TUNSETOWNER(r0, 0x400454cc, 0xee00)

04:18:02 executing program 5:
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={<r0=>0xffffffffffffffff, 0xfffffffffffffffd, 0x876e, 0x5})
recvmmsg(r0, &(0x7f0000002e00)=[{{&(0x7f0000000040)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/164, 0xa4}], 0x1}}, {{&(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @private}}}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000240)=""/25, 0x19}], 0x1, &(0x7f00000002c0)=""/17, 0x11}, 0xfc}, {{&(0x7f0000000300)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80, &(0x7f0000001800)=[{&(0x7f0000000380)=""/4096, 0x1000}, {&(0x7f0000001380)=""/86, 0x56}, {&(0x7f0000001400)}, {&(0x7f0000001440)=""/149, 0x95}, {&(0x7f0000001500)=""/172, 0xac}, {&(0x7f00000015c0)=""/50, 0x32}, {&(0x7f0000001600)=""/221, 0xdd}, {&(0x7f0000001700)=""/81, 0x51}, {&(0x7f0000001780)=""/108, 0x6c}], 0x9, &(0x7f00000018c0)=""/144, 0x90}, 0x9}, {{&(0x7f0000001980)=@in6={0xa, 0x0, 0x0, @private2}, 0x80, &(0x7f0000001fc0)=[{&(0x7f0000001a00)=""/85, 0x55}, {&(0x7f0000001a80)=""/214, 0xd6}, {&(0x7f0000001b80)=""/143, 0x8f}, {&(0x7f0000001c40)=""/186, 0xba}, {&(0x7f0000001d00)=""/63, 0x3f}, {&(0x7f0000001d40)=""/249, 0xf9}, {&(0x7f0000001e40)=""/10, 0xa}, {&(0x7f0000001e80)=""/44, 0x2c}, {&(0x7f0000001ec0)=""/252, 0xfc}], 0x9, &(0x7f0000002080)=""/178, 0xb2}}, {{&(0x7f0000002140)=@in={0x2, 0x0, @dev}, 0x80, &(0x7f0000002440)=[{&(0x7f00000021c0)=""/48, 0x30}, {&(0x7f0000002200)=""/32, 0x20}, {&(0x7f0000002240)=""/165, 0xa5}, {&(0x7f0000002300)=""/184, 0xb8}, {&(0x7f00000023c0)=""/105, 0x69}], 0x5, &(0x7f00000024c0)=""/28, 0x1c}, 0xee0}, {{&(0x7f0000002500)=@pppol2tpv3={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, {0x2, 0x0, @private}}}, 0x80, &(0x7f0000002a80)=[{&(0x7f0000002580)=""/152, 0x98}, {&(0x7f0000002640)=""/179, 0xb3}, {&(0x7f0000002700)=""/187, 0xbb}, {&(0x7f00000027c0)=""/149, 0x95}, {&(0x7f0000002880)=""/148, 0x94}, {&(0x7f0000002940)=""/181, 0xb5}, {&(0x7f0000002a00)=""/61, 0x3d}, {&(0x7f0000002a40)=""/48, 0x30}], 0x8, &(0x7f0000002b00)=""/112, 0x70}, 0x4}, {{&(0x7f0000002b80)=@in={0x2, 0x0, @empty}, 0x80, &(0x7f0000002d80)=[{&(0x7f0000002c00)=""/219, 0xdb}, {&(0x7f0000002d00)=""/118, 0x76}], 0x2, &(0x7f0000002dc0)=""/51, 0x33}, 0x3ff}], 0x7, 0xc0000000, &(0x7f0000002fc0)={0x0, 0x989680})
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000003000), 0x141840, 0x0)
recvmsg(r3, &(0x7f00000032c0)={0x0, 0x0, &(0x7f0000003180)=[{&(0x7f0000003040)=""/227, 0xe3}, {&(0x7f0000003140)=""/5, 0x5}], 0x2, &(0x7f00000031c0)=""/245, 0xf5}, 0x1)
recvfrom(r0, &(0x7f0000003300)=""/4096, 0x1000, 0x20, &(0x7f0000004300)=@qipcrtr={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0x80)
close_range(0xffffffffffffffff, r2, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000004380)='./file0\x00', &(0x7f00000043c0)={0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x4c00)
mount$9p_fd(0x0, &(0x7f0000004440)='./file0\x00', &(0x7f0000004480), 0x40000, &(0x7f00000044c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_L}, {@version_9p2000}, {@version_9p2000}, {@privport}], [{@uid_lt={'uid<', r4}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/dev/null\x00'}}, {@subj_role={'subj_role', 0x3d, '/dev/null\x00'}}, {@smackfsdef={'smackfsdef', 0x3d, '^\'\'*.'}}, {@appraise}, {@euid_lt={'euid<', r4}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}]}})
r5 = openat$cgroup_ro(r3, &(0x7f0000004600)='cpuacct.usage_sys\x00', 0x0, 0x0)
r6 = syz_open_dev$rtc(&(0x7f0000004a00), 0x3, 0x40204)
getresgid(&(0x7f0000004a40), &(0x7f0000004a80), &(0x7f0000004ac0)=<r7=>0x0)
r8 = socket$netlink(0x10, 0x3, 0x10)
sendmmsg$unix(r5, &(0x7f0000004b80)=[{{0x0, 0x0, &(0x7f0000004980)=[{&(0x7f0000004640)="c1822563e665115958cb3d57314c58a9cd17b31d357f73593e1fa43728a70ed9d1d4e439c0857f0fb98a77ad85164a5fa6b24407387d6f6c4a4e79b7889567989740661c973bb4fb2726cc8c6185fd3740a5370f112b2c52725f99374f0cdeb0924cec245d1da8ef68efd32396bfa10670c4751fcf913ebf9c22fba6367b9e7112af24d448eda615df342d1ea5a526c6af7df0516b16c98b19dbefb893e3851f79112d3a4cc6c7", 0xa7}, {&(0x7f0000004700)="c3e87edf8b7a369ca8c4cb82aeb5054cb25089cc31079fa6def5088b1fcd46b1c8f6ce5055441bdc66197c5ced14bd7b55a408fdcd47c36b49abe2f6ba6cfe1354eec9bd2ddba2a629ddc4335470a9e550bd17eba898d6263991b34d74c52d25727c9a62e7e2dc93b2796a0618fdffae23f5b64cb51a76a234f0322cfb69c87be967d8887801bfe56d1fdf737d04cb66410d2d29abde615c776c4411dda09aa379e9d6ca83cd6ed39caf65c4c00fd6b050433df81f309e142409a9d6acea97c936c777d0d7ef3f9e482675c977fcf80588ccfaa40134f0b017280752cdb2cecec28f66f1e30d13da9fe515464f99", 0xee}, {&(0x7f0000004800)="90f6abedd68ca5d3d8f1ec744dddf49420ed8301c3038d", 0x17}, {&(0x7f0000004840)="cd07eed0bed44c42fda294717463b2097cf20851324d509bbea89bcac12eb084860cc47354562c5304741ac7930262d39635445f6c0b0cbee195586b4323873f2f904a6de680f5f48a6863238c33097bf6fa4cc1ef38c1992e9f45e4a49adc6fd4009c5bf15de557d52cae8289ecc0baee79a6f0799adf49db882fa6be7bd536385577d6282985da0c9ddec32ab1b9d64596cf28a4b330361b121f31dad15b09", 0xa0}, {&(0x7f0000004900)="96fba3ff724971445094368215771e18da1407828f95a1ec4852325a881d2feb093c005f6f85a9a8c424d708acf4d830866fb30ee34404a7e635b850a576bf180147854a25ce8a7b4e79f73620ca4177c03c4f7915f4e32e7cc3b5e4041e3ee7ad762ce42ccb339310f0", 0x6a}], 0x5, &(0x7f0000004b00)=[@rights={{0x10}}, @rights={{0x24, 0x1, 0x1, [r2, r0, r0, r1, r6]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r4, r7}}}, @rights={{0x14, 0x1, 0x1, [r8]}}], 0x70, 0x80}}], 0x1, 0x2004c014)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000004c40), 0x80)
mount$9p_fd(0x0, &(0x7f0000004bc0)='./file0/file0\x00', &(0x7f0000004c00), 0x22441, &(0x7f0000004c80)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r9}, 0x2c, {[{@version_u}, {@cache_mmap}, {@access_any}, {@mmap}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'trans=fd,'}}, {@subj_role={'subj_role', 0x3d, '-%^%+,):]}\xbb]])'}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}]}})
r10 = openat$autofs(0xffffffffffffff9c, &(0x7f0000004d40), 0x4100, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r10, 0x8040942d, &(0x7f0000004d80))
readlink(&(0x7f0000004dc0)='./file0\x00', &(0x7f0000004e00)=""/237, 0xed)
newfstatat(0xffffffffffffff9c, &(0x7f0000004f00)='./file0\x00', &(0x7f0000004f40), 0x400)
quotactl(0x3, &(0x7f0000004fc0)='./file0/file0\x00', 0x0, &(0x7f0000005140)="7f31fd31e6c4da81366500ff1a721e287552159ba5503b2fabc7e1da8d4c75ff52ec62a22e52dc84726f8f8fbe78a98d5b3b12390b200b7dab6b0bccb7f6826ce777772eed39fbf9bb24978de047db59a8197c33edeecf138e07aed7c4c3c88f02d4659760dd5399577557d60a52799cdcfc5d2090777de585c5")

[  104.566302] audit: type=1400 audit(1763180282.470:7): avc:  denied  { execmem } for  pid=276 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[  105.813081] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  105.815623] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  105.818454] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  105.820309] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  105.822065] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  105.824697] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  105.829946] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  105.833390] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  105.834723] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  105.836974] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  105.837791] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  105.845315] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  105.850461] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  105.866314] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  105.870442] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  105.871974] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  105.877028] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  105.885858] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  105.887243] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  105.889925] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  105.891641] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  105.899784] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  105.901384] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  105.906693] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  105.908926] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  105.910779] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  105.912671] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  105.914456] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  105.917356] ==================================================================
[  105.918436] BUG: KASAN: slab-use-after-free in hci_cmd_work+0x66d/0x6d0
[  105.919458] Read of size 2 at addr ffff88801e4193f8 by task kworker/u11:9/311
[  105.921075] 
[  105.921869] CPU: 1 UID: 0 PID: 311 Comm: kworker/u11:9 Not tainted 6.18.0-rc5-next-20251114 #1 PREEMPT(voluntary) 
[  105.921898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  105.921912] Workqueue: hci5 hci_cmd_work
[  105.921942] Call Trace:
[  105.921949]  <TASK>
[  105.921957]  dump_stack_lvl+0xca/0x120
[  105.921985]  print_report+0xcb/0x610
[  105.922012]  ? __virt_addr_valid+0x100/0x5d0
[  105.922037]  ? hci_cmd_work+0x66d/0x6d0
[  105.922063]  ? hci_cmd_work+0x66d/0x6d0
[  105.922089]  kasan_report+0xca/0x100
[  105.922116]  ? hci_cmd_work+0x66d/0x6d0
[  105.922145]  hci_cmd_work+0x66d/0x6d0
[  105.922173]  process_one_work+0x8e1/0x19c0
[  105.922209]  ? __pfx_process_one_work+0x10/0x10
[  105.922238]  ? move_linked_works+0x172/0x270
[  105.922261]  ? assign_work+0x196/0x240
[  105.922290]  worker_thread+0x67e/0xe90
[  105.922320]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  105.922345]  ? __pfx_worker_thread+0x10/0x10
[  105.922375]  kthread+0x3c8/0x740
[  105.922407]  ? __pfx_kthread+0x10/0x10
[  105.922436]  ? ret_from_fork+0x79/0x7a0
[  105.922458]  ? lock_release+0xc8/0x290
[  105.922490]  ? __pfx_kthread+0x10/0x10
[  105.922517]  ret_from_fork+0x67a/0x7a0
[  105.922537]  ? __pfx_ret_from_fork+0x10/0x10
[  105.922557]  ? save_fpregs_to_fpstate+0x145/0x270
[  105.922585]  ? __switch_to+0x759/0x1060
[  105.922613]  ? __pfx_kthread+0x10/0x10
[  105.922649]  ret_from_fork_asm+0x1a/0x30
[  105.922685]  </TASK>
[  105.922692] 
[  105.946983] Allocated by task 297:
[  105.947502]  kasan_save_stack+0x24/0x50
[  105.948090]  kasan_save_track+0x14/0x30
[  105.948711]  __kasan_slab_alloc+0x59/0x70
[  105.949329]  kmem_cache_alloc_node_noprof+0x228/0x6b0
[  105.950094]  __alloc_skb+0x2ab/0x370
[  105.950666]  hci_cmd_sync_alloc+0x34/0x300
[  105.951297]  __hci_cmd_sync_sk+0xf7/0x5c0
[  105.951927]  hci_read_local_version_sync+0x2c/0x170
[  105.952676]  hci_dev_open_sync+0x145c/0x1f60
[  105.953325]  hci_power_on+0xdb/0x5d0
[  105.953887]  process_one_work+0x8e1/0x19c0
[  105.954517]  worker_thread+0x67e/0xe90
[  105.955099]  kthread+0x3c8/0x740
[  105.955605]  ret_from_fork+0x67a/0x7a0
[  105.956187]  ret_from_fork_asm+0x1a/0x30
[  105.956803] 
[  105.957072] Freed by task 308:
[  105.957542]  kasan_save_stack+0x24/0x50
[  105.958133]  kasan_save_track+0x14/0x30
[  105.958716]  kasan_save_free_info+0x3a/0x60
[  105.959363]  __kasan_slab_free+0x43/0x70
[  105.959959]  kmem_cache_free+0x26f/0x500
[  105.960591]  kfree_skbmem+0x18a/0x1f0
[  105.961158]  sk_skb_reason_drop+0x10e/0x1b0
[  105.961796]  vhci_read+0x3d5/0x5d0
[  105.962339]  vfs_read+0x1eb/0xc70
[  105.962856]  ksys_read+0x121/0x240
[  105.963381]  do_syscall_64+0xbf/0x430
[  105.963956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.964729] 
[  105.964993] The buggy address belongs to the object at ffff88801e4193c0
[  105.964993]  which belongs to the cache skbuff_head_cache of size 232
[  105.966841] The buggy address is located 56 bytes inside of
[  105.966841]  freed 232-byte region [ffff88801e4193c0, ffff88801e4194a8)
[  105.968580] 
[  105.968840] The buggy address belongs to the physical page:
[  105.969646] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1e419
[  105.970786] memcg:ffff888009bb2f81
[  105.971309] anon flags: 0x100000000000000(node=0|zone=1)
[  105.972085] page_type: f5(slab)
[  105.972586] raw: 0100000000000000 ffff8880096c78c0 ffffea0000334500 dead000000000003
[  105.973700] raw: 0000000000000000 00000000000c000c 00000000f5000000 ffff888009bb2f81
[  105.974812] page dumped because: kasan: bad access detected
[  105.975629] 
[  105.975885] Memory state around the buggy address:
[  105.976619]  ffff88801e419280: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  105.977679]  ffff88801e419300: fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc
[  105.978729] >ffff88801e419380: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[  105.979774]                                                                 ^
[  105.980826]  ffff88801e419400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  105.981874]  ffff88801e419480: fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc
[  105.982917] ==================================================================
[  105.984032] Disabling lock debugging due to kernel taint
[  105.986321] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  105.995497] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  105.999495] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  106.000626] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  106.004360] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  106.004586] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  106.014318] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  106.020549] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  106.024067] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  106.032753] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  106.049581] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  106.053754] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  107.905347] Bluetooth: hci1: command tx timeout
[  107.969665] Bluetooth: hci0: command tx timeout
[  108.032481] Bluetooth: hci2: command tx timeout
[  108.035198] Bluetooth: hci4: command tx timeout
[  108.035650] Bluetooth: hci3: command tx timeout
[  108.097253] Bluetooth: hci7: command tx timeout
[  108.097703] Bluetooth: hci6: command tx timeout
[  108.098113] Bluetooth: hci5: command tx timeout
[  109.953518] Bluetooth: hci1: command tx timeout
[  110.016320] Bluetooth: hci0: command tx timeout
[  110.081090] Bluetooth: hci3: command tx timeout
[  110.081556] Bluetooth: hci4: command tx timeout
[  110.081936] Bluetooth: hci2: command tx timeout
[  110.145281] Bluetooth: hci5: command tx timeout
[  110.145748] Bluetooth: hci6: command tx timeout
[  110.146735] Bluetooth: hci7: command tx timeout
[  112.000195] Bluetooth: hci1: command tx timeout
[  112.065260] Bluetooth: hci0: command tx timeout
[  112.128541] Bluetooth: hci2: command tx timeout
[  112.128991] Bluetooth: hci3: command tx timeout
[  112.129436] Bluetooth: hci4: command tx timeout
[  112.193234] Bluetooth: hci7: command tx timeout
[  112.193658] Bluetooth: hci5: command tx timeout
[  112.194012] Bluetooth: hci6: command tx timeout
[  114.049247] Bluetooth: hci1: command tx timeout
[  114.113461] Bluetooth: hci0: command tx timeout
[  114.177953] Bluetooth: hci2: command tx timeout
[  114.178884] Bluetooth: hci3: command tx timeout
[  114.179272] Bluetooth: hci4: command tx timeout
[  114.241300] Bluetooth: hci7: command tx timeout
[  114.241712] Bluetooth: hci5: command tx timeout
[  114.242084] Bluetooth: hci6: command tx timeout

VM DIAGNOSIS:
04:18:03  Registers:
info registers vcpu 0
RAX=00007f8ca6351df0 RBX=0000000000000007 RCX=0000000000000221 RDX=0000561259e6fc10
RSI=00000000beefdefc RDI=0000561259e7a2e0 RBP=0000000000000020 RSP=00007ffeebddb530
R8 =0000000000000001 R9 =00007f8ca6351be0 R10=0000000000000024 R11=0000000000000020
R12=00007f8ca6351b80 R13=0000000000000220 R14=0000000000000220 R15=0000561259e7a2e0
RIP=00007f8ca6219721 RFL=00010246 [---Z-P-] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f8ca5dd28c0 00000000 00000000
GS =0000 0000000000000000 00000000 00000000
LDT=0000 fffffe5100000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000561259e6fc20 CR3=0000000013956000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ff0000000000000000ff000000000000
XMM02=00ff00000000000000000000ff000000 XMM03=696e656420737365636341002f737973
XMM04=0000561259e413e00000561259e41310 XMM05=00000000ff00ff010000000500000004
XMM06=00000000000000020000561259e7b520 XMM07=00000000000000000000000000000000
XMM08=44006464613d4e4f4954434100326963 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000078 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8293dd05 RDI=ffffffff889747c0 RBP=ffffffff88974780 RSP=ffff888016437618
R8 =0000000000000000 R9 =ffffed1001540046 R10=0000000000000078 R11=74735f706d756420
R12=0000000000000078 R13=0000000000000010 R14=ffffffff88974780 R15=ffffffff8293dcf0
RIP=ffffffff8293dd5d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e548f000 00000000 00000000
LDT=0000 fffffe3a00000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f1fffef5cec CR3=00000000171ed000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f0073cf87c000007f0073cf87c8
XMM02=00007f0073cf87e000007f0073cf87c0 XMM03=00007f0073cf87c800007f0073cf87c0
XMM04=ffffffffffffffffffffffffffffff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000