Warning: Permanently added '[localhost]:33511' (ECDSA) to the list of known hosts.
2025/11/15 11:42:24 fuzzer started
2025/11/15 11:42:24 dialing manager at localhost:37161
syzkaller login: [   52.462736] cgroup: Unknown subsys name 'net'
[   52.511762] cgroup: Unknown subsys name 'cpuset'
[   52.524055] cgroup: Unknown subsys name 'rlimit'
2025/11/15 11:42:34 syscalls: 2214
2025/11/15 11:42:34 code coverage: enabled
2025/11/15 11:42:34 comparison tracing: enabled
2025/11/15 11:42:34 extra coverage: enabled
2025/11/15 11:42:34 setuid sandbox: enabled
2025/11/15 11:42:34 namespace sandbox: enabled
2025/11/15 11:42:34 Android sandbox: enabled
2025/11/15 11:42:34 fault injection: enabled
2025/11/15 11:42:34 leak checking: enabled
2025/11/15 11:42:34 net packet injection: enabled
2025/11/15 11:42:34 net device setup: enabled
2025/11/15 11:42:34 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/11/15 11:42:34 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/11/15 11:42:34 USB emulation: enabled
2025/11/15 11:42:34 hci packet injection: enabled
2025/11/15 11:42:34 wifi device emulation: enabled
2025/11/15 11:42:34 802.15.4 emulation: enabled
2025/11/15 11:42:35 fetching corpus: 50, signal 23137/24979 (executing program)
2025/11/15 11:42:35 fetching corpus: 100, signal 38069/41467 (executing program)
2025/11/15 11:42:35 fetching corpus: 150, signal 44971/49924 (executing program)
2025/11/15 11:42:35 fetching corpus: 200, signal 56600/62858 (executing program)
2025/11/15 11:42:35 fetching corpus: 250, signal 60993/68645 (executing program)
2025/11/15 11:42:35 fetching corpus: 300, signal 66828/75755 (executing program)
2025/11/15 11:42:35 fetching corpus: 350, signal 70635/80851 (executing program)
2025/11/15 11:42:35 fetching corpus: 400, signal 74155/85611 (executing program)
2025/11/15 11:42:35 fetching corpus: 450, signal 76878/89616 (executing program)
2025/11/15 11:42:35 fetching corpus: 500, signal 79933/93860 (executing program)
2025/11/15 11:42:35 fetching corpus: 550, signal 83072/98177 (executing program)
2025/11/15 11:42:36 fetching corpus: 600, signal 86143/102323 (executing program)
2025/11/15 11:42:36 fetching corpus: 650, signal 89352/106603 (executing program)
2025/11/15 11:42:36 fetching corpus: 700, signal 91010/109421 (executing program)
2025/11/15 11:42:36 fetching corpus: 750, signal 92772/112345 (executing program)
2025/11/15 11:42:36 fetching corpus: 800, signal 95265/115776 (executing program)
2025/11/15 11:42:36 fetching corpus: 850, signal 97235/118792 (executing program)
2025/11/15 11:42:36 fetching corpus: 900, signal 99667/122171 (executing program)
2025/11/15 11:42:36 fetching corpus: 950, signal 102607/125961 (executing program)
2025/11/15 11:42:36 fetching corpus: 1000, signal 104403/128730 (executing program)
2025/11/15 11:42:36 fetching corpus: 1050, signal 106595/131773 (executing program)
2025/11/15 11:42:36 fetching corpus: 1100, signal 108748/134768 (executing program)
2025/11/15 11:42:37 fetching corpus: 1150, signal 110597/137456 (executing program)
2025/11/15 11:42:37 fetching corpus: 1200, signal 112432/140125 (executing program)
2025/11/15 11:42:37 fetching corpus: 1250, signal 114741/143221 (executing program)
2025/11/15 11:42:37 fetching corpus: 1300, signal 116180/145506 (executing program)
2025/11/15 11:42:37 fetching corpus: 1350, signal 117993/148105 (executing program)
2025/11/15 11:42:37 fetching corpus: 1400, signal 118986/150011 (executing program)
2025/11/15 11:42:37 fetching corpus: 1450, signal 119923/151872 (executing program)
2025/11/15 11:42:37 fetching corpus: 1500, signal 121165/153948 (executing program)
2025/11/15 11:42:37 fetching corpus: 1550, signal 123496/156831 (executing program)
2025/11/15 11:42:38 fetching corpus: 1600, signal 125347/159350 (executing program)
2025/11/15 11:42:38 fetching corpus: 1650, signal 126800/161492 (executing program)
2025/11/15 11:42:38 fetching corpus: 1700, signal 127916/163400 (executing program)
2025/11/15 11:42:38 fetching corpus: 1750, signal 128713/165044 (executing program)
2025/11/15 11:42:38 fetching corpus: 1800, signal 129956/167037 (executing program)
2025/11/15 11:42:38 fetching corpus: 1850, signal 131263/169021 (executing program)
2025/11/15 11:42:38 fetching corpus: 1900, signal 132304/170823 (executing program)
2025/11/15 11:42:38 fetching corpus: 1950, signal 133069/172391 (executing program)
2025/11/15 11:42:38 fetching corpus: 2000, signal 134240/174225 (executing program)
2025/11/15 11:42:38 fetching corpus: 2050, signal 135664/176191 (executing program)
2025/11/15 11:42:39 fetching corpus: 2100, signal 136716/177861 (executing program)
2025/11/15 11:42:39 fetching corpus: 2150, signal 137712/179524 (executing program)
2025/11/15 11:42:39 fetching corpus: 2200, signal 138752/181190 (executing program)
2025/11/15 11:42:39 fetching corpus: 2250, signal 139500/182673 (executing program)
2025/11/15 11:42:39 fetching corpus: 2300, signal 140473/184251 (executing program)
2025/11/15 11:42:39 fetching corpus: 2350, signal 141161/185702 (executing program)
2025/11/15 11:42:39 fetching corpus: 2400, signal 142126/187293 (executing program)
2025/11/15 11:42:39 fetching corpus: 2450, signal 143142/188843 (executing program)
2025/11/15 11:42:40 fetching corpus: 2500, signal 143813/190203 (executing program)
2025/11/15 11:42:40 fetching corpus: 2550, signal 144764/191750 (executing program)
2025/11/15 11:42:40 fetching corpus: 2600, signal 145548/193135 (executing program)
2025/11/15 11:42:40 fetching corpus: 2650, signal 146460/194630 (executing program)
2025/11/15 11:42:40 fetching corpus: 2700, signal 147913/196359 (executing program)
2025/11/15 11:42:40 fetching corpus: 2750, signal 148643/197692 (executing program)
2025/11/15 11:42:40 fetching corpus: 2800, signal 149546/199101 (executing program)
2025/11/15 11:42:40 fetching corpus: 2850, signal 150106/200332 (executing program)
2025/11/15 11:42:40 fetching corpus: 2900, signal 151795/202197 (executing program)
2025/11/15 11:42:40 fetching corpus: 2950, signal 152303/203347 (executing program)
2025/11/15 11:42:41 fetching corpus: 3000, signal 153445/204868 (executing program)
2025/11/15 11:42:41 fetching corpus: 3050, signal 153869/205947 (executing program)
2025/11/15 11:42:41 fetching corpus: 3100, signal 154571/207169 (executing program)
2025/11/15 11:42:41 fetching corpus: 3150, signal 156126/208838 (executing program)
2025/11/15 11:42:41 fetching corpus: 3200, signal 157377/210309 (executing program)
2025/11/15 11:42:41 fetching corpus: 3250, signal 157951/211446 (executing program)
2025/11/15 11:42:41 fetching corpus: 3300, signal 158677/212641 (executing program)
2025/11/15 11:42:41 fetching corpus: 3350, signal 159196/213692 (executing program)
2025/11/15 11:42:41 fetching corpus: 3400, signal 159611/214706 (executing program)
2025/11/15 11:42:42 fetching corpus: 3450, signal 160154/215779 (executing program)
2025/11/15 11:42:42 fetching corpus: 3500, signal 160808/216846 (executing program)
2025/11/15 11:42:42 fetching corpus: 3550, signal 161722/218083 (executing program)
2025/11/15 11:42:42 fetching corpus: 3600, signal 162351/219174 (executing program)
2025/11/15 11:42:42 fetching corpus: 3650, signal 162875/220202 (executing program)
2025/11/15 11:42:42 fetching corpus: 3700, signal 163601/221316 (executing program)
2025/11/15 11:42:42 fetching corpus: 3750, signal 164093/222301 (executing program)
2025/11/15 11:42:42 fetching corpus: 3800, signal 164720/223364 (executing program)
2025/11/15 11:42:42 fetching corpus: 3850, signal 165193/224354 (executing program)
2025/11/15 11:42:43 fetching corpus: 3900, signal 165689/225337 (executing program)
2025/11/15 11:42:43 fetching corpus: 3950, signal 166275/226413 (executing program)
2025/11/15 11:42:43 fetching corpus: 4000, signal 166854/227333 (executing program)
2025/11/15 11:42:43 fetching corpus: 4050, signal 167536/228367 (executing program)
2025/11/15 11:42:43 fetching corpus: 4100, signal 168064/229362 (executing program)
2025/11/15 11:42:43 fetching corpus: 4150, signal 168509/230287 (executing program)
2025/11/15 11:42:43 fetching corpus: 4200, signal 169119/231276 (executing program)
2025/11/15 11:42:43 fetching corpus: 4250, signal 169532/232196 (executing program)
2025/11/15 11:42:43 fetching corpus: 4300, signal 170474/233280 (executing program)
2025/11/15 11:42:43 fetching corpus: 4350, signal 170891/234202 (executing program)
2025/11/15 11:42:44 fetching corpus: 4400, signal 171543/235117 (executing program)
2025/11/15 11:42:44 fetching corpus: 4450, signal 172051/236012 (executing program)
2025/11/15 11:42:44 fetching corpus: 4500, signal 172418/236848 (executing program)
2025/11/15 11:42:44 fetching corpus: 4550, signal 172913/237686 (executing program)
2025/11/15 11:42:44 fetching corpus: 4600, signal 173432/238514 (executing program)
2025/11/15 11:42:44 fetching corpus: 4650, signal 173962/239366 (executing program)
2025/11/15 11:42:44 fetching corpus: 4700, signal 174567/240215 (executing program)
2025/11/15 11:42:44 fetching corpus: 4750, signal 175054/241009 (executing program)
2025/11/15 11:42:44 fetching corpus: 4800, signal 175620/241857 (executing program)
2025/11/15 11:42:44 fetching corpus: 4850, signal 176237/242761 (executing program)
2025/11/15 11:42:45 fetching corpus: 4900, signal 176840/243599 (executing program)
2025/11/15 11:42:45 fetching corpus: 4950, signal 177128/244336 (executing program)
2025/11/15 11:42:45 fetching corpus: 5000, signal 177598/245158 (executing program)
2025/11/15 11:42:45 fetching corpus: 5050, signal 178079/245978 (executing program)
2025/11/15 11:42:45 fetching corpus: 5100, signal 178738/246792 (executing program)
2025/11/15 11:42:45 fetching corpus: 5150, signal 179219/247560 (executing program)
2025/11/15 11:42:45 fetching corpus: 5200, signal 179644/248267 (executing program)
2025/11/15 11:42:45 fetching corpus: 5250, signal 179892/248988 (executing program)
2025/11/15 11:42:45 fetching corpus: 5300, signal 180270/249748 (executing program)
2025/11/15 11:42:45 fetching corpus: 5350, signal 180581/250482 (executing program)
2025/11/15 11:42:45 fetching corpus: 5400, signal 181190/251256 (executing program)
2025/11/15 11:42:46 fetching corpus: 5450, signal 181774/252021 (executing program)
2025/11/15 11:42:46 fetching corpus: 5500, signal 182163/252727 (executing program)
2025/11/15 11:42:46 fetching corpus: 5550, signal 182561/253470 (executing program)
2025/11/15 11:42:46 fetching corpus: 5600, signal 183075/254254 (executing program)
2025/11/15 11:42:46 fetching corpus: 5650, signal 183335/254924 (executing program)
2025/11/15 11:42:46 fetching corpus: 5700, signal 183822/255621 (executing program)
2025/11/15 11:42:46 fetching corpus: 5750, signal 184526/256362 (executing program)
2025/11/15 11:42:46 fetching corpus: 5800, signal 184986/257028 (executing program)
2025/11/15 11:42:46 fetching corpus: 5850, signal 185365/257676 (executing program)
2025/11/15 11:42:46 fetching corpus: 5900, signal 186275/258418 (executing program)
2025/11/15 11:42:47 fetching corpus: 5950, signal 186689/259123 (executing program)
2025/11/15 11:42:47 fetching corpus: 6000, signal 186940/259754 (executing program)
2025/11/15 11:42:47 fetching corpus: 6050, signal 187462/260397 (executing program)
2025/11/15 11:42:47 fetching corpus: 6100, signal 188081/261067 (executing program)
2025/11/15 11:42:47 fetching corpus: 6150, signal 188320/261684 (executing program)
2025/11/15 11:42:47 fetching corpus: 6200, signal 188518/262301 (executing program)
2025/11/15 11:42:47 fetching corpus: 6250, signal 188899/262905 (executing program)
2025/11/15 11:42:47 fetching corpus: 6300, signal 189317/263519 (executing program)
2025/11/15 11:42:47 fetching corpus: 6350, signal 189724/264147 (executing program)
2025/11/15 11:42:47 fetching corpus: 6400, signal 189987/264763 (executing program)
2025/11/15 11:42:47 fetching corpus: 6450, signal 190384/265365 (executing program)
2025/11/15 11:42:48 fetching corpus: 6500, signal 190836/265967 (executing program)
2025/11/15 11:42:48 fetching corpus: 6550, signal 191126/266579 (executing program)
2025/11/15 11:42:48 fetching corpus: 6600, signal 191385/267144 (executing program)
2025/11/15 11:42:48 fetching corpus: 6650, signal 191728/267692 (executing program)
2025/11/15 11:42:48 fetching corpus: 6700, signal 192102/268266 (executing program)
2025/11/15 11:42:48 fetching corpus: 6750, signal 192447/268346 (executing program)
2025/11/15 11:42:48 fetching corpus: 6800, signal 192833/268346 (executing program)
2025/11/15 11:42:48 fetching corpus: 6850, signal 193239/268346 (executing program)
2025/11/15 11:42:48 fetching corpus: 6900, signal 193597/268346 (executing program)
2025/11/15 11:42:48 fetching corpus: 6950, signal 193869/268346 (executing program)
2025/11/15 11:42:48 fetching corpus: 7000, signal 194320/268349 (executing program)
2025/11/15 11:42:48 fetching corpus: 7050, signal 194755/268349 (executing program)
2025/11/15 11:42:49 fetching corpus: 7100, signal 195129/268349 (executing program)
2025/11/15 11:42:49 fetching corpus: 7150, signal 195393/268349 (executing program)
2025/11/15 11:42:49 fetching corpus: 7200, signal 195661/268349 (executing program)
2025/11/15 11:42:49 fetching corpus: 7250, signal 196018/268349 (executing program)
2025/11/15 11:42:49 fetching corpus: 7300, signal 196261/268349 (executing program)
2025/11/15 11:42:49 fetching corpus: 7350, signal 196571/268349 (executing program)
2025/11/15 11:42:49 fetching corpus: 7400, signal 196877/268349 (executing program)
2025/11/15 11:42:49 fetching corpus: 7450, signal 197146/268353 (executing program)
2025/11/15 11:42:49 fetching corpus: 7500, signal 197446/268353 (executing program)
2025/11/15 11:42:49 fetching corpus: 7550, signal 198030/268353 (executing program)
2025/11/15 11:42:49 fetching corpus: 7600, signal 198424/268376 (executing program)
2025/11/15 11:42:50 fetching corpus: 7650, signal 198746/268380 (executing program)
2025/11/15 11:42:50 fetching corpus: 7700, signal 198965/268380 (executing program)
2025/11/15 11:42:50 fetching corpus: 7750, signal 199226/268380 (executing program)
2025/11/15 11:42:50 fetching corpus: 7800, signal 199479/268380 (executing program)
2025/11/15 11:42:50 fetching corpus: 7850, signal 199818/268382 (executing program)
2025/11/15 11:42:50 fetching corpus: 7900, signal 200169/268382 (executing program)
2025/11/15 11:42:50 fetching corpus: 7950, signal 200536/268382 (executing program)
2025/11/15 11:42:50 fetching corpus: 8000, signal 200784/268382 (executing program)
2025/11/15 11:42:50 fetching corpus: 8050, signal 201072/268382 (executing program)
2025/11/15 11:42:50 fetching corpus: 8100, signal 201449/268382 (executing program)
2025/11/15 11:42:50 fetching corpus: 8150, signal 201751/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8200, signal 202085/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8250, signal 202340/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8300, signal 202633/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8350, signal 202969/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8400, signal 203392/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8450, signal 203714/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8500, signal 203983/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8550, signal 204268/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8600, signal 204732/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8650, signal 204988/268382 (executing program)
2025/11/15 11:42:51 fetching corpus: 8700, signal 205247/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 8750, signal 205585/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 8800, signal 205880/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 8850, signal 206114/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 8900, signal 206424/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 8950, signal 206871/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 9000, signal 207185/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 9050, signal 207820/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 9100, signal 208069/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 9150, signal 208278/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 9200, signal 208861/268385 (executing program)
2025/11/15 11:42:52 fetching corpus: 9250, signal 209094/268385 (executing program)
2025/11/15 11:42:53 fetching corpus: 9300, signal 209363/268385 (executing program)
2025/11/15 11:42:53 fetching corpus: 9350, signal 209636/268385 (executing program)
2025/11/15 11:42:53 fetching corpus: 9400, signal 209910/268385 (executing program)
2025/11/15 11:42:53 fetching corpus: 9450, signal 210253/268385 (executing program)
2025/11/15 11:42:53 fetching corpus: 9500, signal 210609/268385 (executing program)
2025/11/15 11:42:53 fetching corpus: 9550, signal 210900/268385 (executing program)
2025/11/15 11:42:53 fetching corpus: 9600, signal 211123/268385 (executing program)
2025/11/15 11:42:53 fetching corpus: 9650, signal 211399/268386 (executing program)
2025/11/15 11:42:53 fetching corpus: 9700, signal 211651/268386 (executing program)
2025/11/15 11:42:53 fetching corpus: 9750, signal 211864/268386 (executing program)
2025/11/15 11:42:53 fetching corpus: 9800, signal 212050/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 9850, signal 212369/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 9900, signal 212654/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 9950, signal 212915/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 10000, signal 213167/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 10050, signal 213408/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 10100, signal 213683/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 10150, signal 213920/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 10200, signal 214160/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 10250, signal 214432/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 10300, signal 214670/268386 (executing program)
2025/11/15 11:42:54 fetching corpus: 10350, signal 214838/268386 (executing program)
2025/11/15 11:42:55 fetching corpus: 10400, signal 215189/268386 (executing program)
2025/11/15 11:42:55 fetching corpus: 10450, signal 215455/268386 (executing program)
2025/11/15 11:42:55 fetching corpus: 10500, signal 215709/268386 (executing program)
2025/11/15 11:42:55 fetching corpus: 10550, signal 215959/268386 (executing program)
2025/11/15 11:42:55 fetching corpus: 10600, signal 216154/268386 (executing program)
2025/11/15 11:42:55 fetching corpus: 10650, signal 216480/268386 (executing program)
2025/11/15 11:42:55 fetching corpus: 10700, signal 216678/268386 (executing program)
2025/11/15 11:42:55 fetching corpus: 10750, signal 216865/268386 (executing program)
2025/11/15 11:42:55 fetching corpus: 10800, signal 217082/268386 (executing program)
2025/11/15 11:42:55 fetching corpus: 10850, signal 217299/268386 (executing program)
2025/11/15 11:42:56 fetching corpus: 10900, signal 217491/268386 (executing program)
2025/11/15 11:42:56 fetching corpus: 10950, signal 217661/268386 (executing program)
2025/11/15 11:42:56 fetching corpus: 11000, signal 218001/268386 (executing program)
2025/11/15 11:42:56 fetching corpus: 11050, signal 218183/268386 (executing program)
2025/11/15 11:42:56 fetching corpus: 11100, signal 218427/268386 (executing program)
2025/11/15 11:42:56 fetching corpus: 11150, signal 218723/268386 (executing program)
2025/11/15 11:42:56 fetching corpus: 11200, signal 218987/268386 (executing program)
2025/11/15 11:42:56 fetching corpus: 11250, signal 219289/268386 (executing program)
2025/11/15 11:42:56 fetching corpus: 11300, signal 219547/268387 (executing program)
2025/11/15 11:42:56 fetching corpus: 11350, signal 219781/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11400, signal 220028/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11450, signal 220238/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11500, signal 220456/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11550, signal 220709/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11600, signal 220925/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11650, signal 221152/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11700, signal 221456/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11750, signal 221703/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11800, signal 221886/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11850, signal 222025/268387 (executing program)
2025/11/15 11:42:57 fetching corpus: 11900, signal 222225/268387 (executing program)
2025/11/15 11:42:58 fetching corpus: 11950, signal 222440/268387 (executing program)
2025/11/15 11:42:58 fetching corpus: 12000, signal 222652/268387 (executing program)
2025/11/15 11:42:58 fetching corpus: 12050, signal 222923/268387 (executing program)
2025/11/15 11:42:58 fetching corpus: 12100, signal 223153/268387 (executing program)
2025/11/15 11:42:58 fetching corpus: 12150, signal 223288/268387 (executing program)
2025/11/15 11:42:58 fetching corpus: 12200, signal 223541/268387 (executing program)
2025/11/15 11:42:58 fetching corpus: 12250, signal 223771/268387 (executing program)
2025/11/15 11:42:58 fetching corpus: 12300, signal 224069/268387 (executing program)
2025/11/15 11:42:58 fetching corpus: 12350, signal 224296/268387 (executing program)
2025/11/15 11:42:58 fetching corpus: 12400, signal 224484/268388 (executing program)
2025/11/15 11:42:58 fetching corpus: 12450, signal 224652/268388 (executing program)
2025/11/15 11:42:59 fetching corpus: 12500, signal 224930/268388 (executing program)
2025/11/15 11:42:59 fetching corpus: 12550, signal 225096/268388 (executing program)
2025/11/15 11:42:59 fetching corpus: 12600, signal 225312/268388 (executing program)
2025/11/15 11:42:59 fetching corpus: 12650, signal 225503/268388 (executing program)
2025/11/15 11:42:59 fetching corpus: 12700, signal 225823/268388 (executing program)
2025/11/15 11:42:59 fetching corpus: 12750, signal 226007/268388 (executing program)
2025/11/15 11:42:59 fetching corpus: 12800, signal 226171/268390 (executing program)
2025/11/15 11:42:59 fetching corpus: 12850, signal 226352/268390 (executing program)
2025/11/15 11:42:59 fetching corpus: 12900, signal 226581/268390 (executing program)
2025/11/15 11:42:59 fetching corpus: 12950, signal 226778/268390 (executing program)
2025/11/15 11:43:00 fetching corpus: 13000, signal 226972/268390 (executing program)
2025/11/15 11:43:00 fetching corpus: 13050, signal 227314/268403 (executing program)
2025/11/15 11:43:00 fetching corpus: 13100, signal 227612/268403 (executing program)
2025/11/15 11:43:00 fetching corpus: 13150, signal 227851/268403 (executing program)
2025/11/15 11:43:00 fetching corpus: 13200, signal 228104/268413 (executing program)
2025/11/15 11:43:00 fetching corpus: 13250, signal 228340/268413 (executing program)
2025/11/15 11:43:00 fetching corpus: 13300, signal 228459/268413 (executing program)
2025/11/15 11:43:00 fetching corpus: 13350, signal 228684/268413 (executing program)
2025/11/15 11:43:00 fetching corpus: 13400, signal 228878/268413 (executing program)
2025/11/15 11:43:00 fetching corpus: 13450, signal 229526/268413 (executing program)
2025/11/15 11:43:01 fetching corpus: 13500, signal 229726/268413 (executing program)
2025/11/15 11:43:01 fetching corpus: 13550, signal 229944/268413 (executing program)
2025/11/15 11:43:01 fetching corpus: 13600, signal 230135/268413 (executing program)
2025/11/15 11:43:01 fetching corpus: 13650, signal 230375/268413 (executing program)
2025/11/15 11:43:01 fetching corpus: 13700, signal 230508/268413 (executing program)
2025/11/15 11:43:01 fetching corpus: 13750, signal 230718/268413 (executing program)
2025/11/15 11:43:01 fetching corpus: 13800, signal 230879/268413 (executing program)
2025/11/15 11:43:01 fetching corpus: 13850, signal 231002/268413 (executing program)
2025/11/15 11:43:01 fetching corpus: 13900, signal 231206/268413 (executing program)
2025/11/15 11:43:01 fetching corpus: 13950, signal 231350/268413 (executing program)
2025/11/15 11:43:02 fetching corpus: 14000, signal 231695/268413 (executing program)
2025/11/15 11:43:02 fetching corpus: 14050, signal 231836/268413 (executing program)
2025/11/15 11:43:02 fetching corpus: 14100, signal 232061/268414 (executing program)
2025/11/15 11:43:02 fetching corpus: 14150, signal 232225/268414 (executing program)
2025/11/15 11:43:02 fetching corpus: 14200, signal 232456/268414 (executing program)
2025/11/15 11:43:02 fetching corpus: 14250, signal 232634/268414 (executing program)
2025/11/15 11:43:02 fetching corpus: 14300, signal 232818/268414 (executing program)
2025/11/15 11:43:02 fetching corpus: 14350, signal 233025/268414 (executing program)
2025/11/15 11:43:03 fetching corpus: 14400, signal 233221/268414 (executing program)
2025/11/15 11:43:03 fetching corpus: 14450, signal 233480/268414 (executing program)
2025/11/15 11:43:03 fetching corpus: 14500, signal 233695/268414 (executing program)
2025/11/15 11:43:03 fetching corpus: 14550, signal 233883/268414 (executing program)
2025/11/15 11:43:03 fetching corpus: 14600, signal 234028/268414 (executing program)
2025/11/15 11:43:03 fetching corpus: 14650, signal 234186/268414 (executing program)
2025/11/15 11:43:03 fetching corpus: 14700, signal 234396/268414 (executing program)
2025/11/15 11:43:03 fetching corpus: 14750, signal 234504/268414 (executing program)
2025/11/15 11:43:03 fetching corpus: 14800, signal 234740/268416 (executing program)
2025/11/15 11:43:04 fetching corpus: 14850, signal 234990/268416 (executing program)
2025/11/15 11:43:04 fetching corpus: 14900, signal 235205/268416 (executing program)
2025/11/15 11:43:04 fetching corpus: 14950, signal 235371/268416 (executing program)
2025/11/15 11:43:04 fetching corpus: 15000, signal 235505/268416 (executing program)
2025/11/15 11:43:04 fetching corpus: 15050, signal 235739/268416 (executing program)
2025/11/15 11:43:04 fetching corpus: 15100, signal 235903/268416 (executing program)
2025/11/15 11:43:04 fetching corpus: 15150, signal 236071/268416 (executing program)
2025/11/15 11:43:04 fetching corpus: 15200, signal 236292/268416 (executing program)
2025/11/15 11:43:04 fetching corpus: 15250, signal 236465/268416 (executing program)
2025/11/15 11:43:04 fetching corpus: 15300, signal 236629/268418 (executing program)
2025/11/15 11:43:04 fetching corpus: 15350, signal 236832/268418 (executing program)
2025/11/15 11:43:05 fetching corpus: 15400, signal 237000/268418 (executing program)
2025/11/15 11:43:05 fetching corpus: 15450, signal 237167/268418 (executing program)
2025/11/15 11:43:05 fetching corpus: 15500, signal 237357/268418 (executing program)
2025/11/15 11:43:05 fetching corpus: 15550, signal 237506/268418 (executing program)
2025/11/15 11:43:05 fetching corpus: 15600, signal 237732/268418 (executing program)
2025/11/15 11:43:05 fetching corpus: 15650, signal 237874/268418 (executing program)
2025/11/15 11:43:05 fetching corpus: 15700, signal 238036/268418 (executing program)
2025/11/15 11:43:05 fetching corpus: 15750, signal 238198/268419 (executing program)
2025/11/15 11:43:05 fetching corpus: 15800, signal 238446/268419 (executing program)
2025/11/15 11:43:06 fetching corpus: 15850, signal 238605/268419 (executing program)
2025/11/15 11:43:06 fetching corpus: 15900, signal 238775/268419 (executing program)
2025/11/15 11:43:06 fetching corpus: 15950, signal 238893/268419 (executing program)
2025/11/15 11:43:06 fetching corpus: 16000, signal 239105/268419 (executing program)
2025/11/15 11:43:06 fetching corpus: 16050, signal 239274/268419 (executing program)
2025/11/15 11:43:06 fetching corpus: 16100, signal 239436/268419 (executing program)
2025/11/15 11:43:06 fetching corpus: 16150, signal 239573/268419 (executing program)
2025/11/15 11:43:06 fetching corpus: 16158, signal 239599/268419 (executing program)
2025/11/15 11:43:06 fetching corpus: 16158, signal 239599/268419 (executing program)
2025/11/15 11:43:08 starting 8 fuzzer processes
11:43:08 executing program 0:
r0 = semget$private(0x0, 0x2, 0x580)
semctl$GETALL(r0, 0x0, 0xd, &(0x7f0000000000)=""/85)
clock_gettime(0x0, &(0x7f00000000c0)={<r1=>0x0, <r2=>0x0})
semtimedop(r0, &(0x7f0000000080)=[{0x4, 0x81, 0x800}, {0x1, 0x3, 0x1000}, {0x1, 0x7fff, 0x1800}, {0x0, 0x7, 0x1000}], 0x4, &(0x7f0000000100)={r1, r2+60000000})
semtimedop(r0, &(0x7f0000000140)=[{0x2, 0x1d05, 0x800}, {0x1, 0x5807, 0x1000}, {0x1, 0x0, 0x1000}, {0x1, 0x5f24, 0x1000}, {0x2, 0x800}, {0x1, 0x1}, {0x1, 0x1dbc, 0x1000}, {0x2, 0x2, 0x1800}, {0x0, 0x101, 0x1000}], 0x9, &(0x7f0000000180)={0x77359400})
semctl$IPC_RMID(r0, 0x0, 0x0)
semget$private(0x0, 0x3, 0x8)
r3 = semget$private(0x0, 0x0, 0x1)
semtimedop(r3, &(0x7f00000001c0)=[{0x4, 0x6, 0x800}, {0x0, 0x8, 0x1800}, {0x0, 0x4609, 0x1000}], 0x3, &(0x7f0000000200)={0x77359400})
r4 = semget(0x2, 0x3, 0x300)
semctl$SEM_STAT(r4, 0x4, 0x12, &(0x7f0000000240)=""/146)
semctl$SETALL(r4, 0x0, 0x11, &(0x7f0000000300)=[0x1, 0xd3, 0xfff8, 0x9])
r5 = semget(0x2, 0x6, 0x200)
semctl$GETALL(r5, 0x0, 0xd, &(0x7f0000000340)=""/106)
semctl$GETVAL(r5, 0x4, 0xc, &(0x7f00000003c0)=""/70)
semop(r4, &(0x7f0000000440)=[{0x4, 0x7, 0x800}, {0x5, 0x0, 0x1000}, {0x3, 0x5c, 0x3000}, {0x0, 0x4, 0x800}, {0x4, 0x200}, {0x3, 0x81}, {0x3, 0x5}, {0x3, 0x8000, 0x1000}, {0x4, 0x0, 0x800}], 0x9)
semctl$SETALL(r3, 0x0, 0x11, &(0x7f0000000480)=[0x40, 0x4, 0x7])
semtimedop(r4, &(0x7f00000004c0)=[{0x1, 0x1ff, 0x1400}, {0x1, 0x4, 0x800}, {0x3, 0x0, 0x800}, {0x1, 0x20, 0x3000}, {0x0, 0x7, 0x1800}], 0x5, &(0x7f0000000500)={0x0, 0x3938700})
semctl$GETNCNT(r0, 0x0, 0xe, &(0x7f0000000540)=""/61)
semget(0x3, 0x0, 0xa0)

11:43:08 executing program 7:
ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000000)={{0x5, 0x3}, 0x100, './file0\x00'})
utime(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x9})
r0 = syz_open_dev$mouse(&(0x7f00000001c0), 0x4, 0x380)
ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x42cbf)
syz_open_dev$usbmon(&(0x7f0000000200), 0x5, 0x100200)
syz_open_dev$usbmon(&(0x7f0000000240), 0x8000, 0x80a00)
r1 = syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x311001)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x200000c, 0x50, r0, 0xfa9eb000)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000300)={'\x00', 0x200, 0x1000000, 0x400, 0x6b8, 0x8000})
r3 = syz_open_dev$sg(&(0x7f0000000380), 0x80000001, 0x80)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r4=>r0, {0x3ff}}, './file0\x00'})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r2, &(0x7f0000000400)={0x70000010})
ioctl$SCSI_IOCTL_PROBE_HOST(r2, 0x5385, &(0x7f0000000440)={0xd0, ""/208})
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000540)={<r5=>r1, 0x1ff, 0x4563, 0xfff})
r6 = open_tree(0xffffffffffffffff, &(0x7f0000000580)='./file0\x00', 0x1001)
sendfile(r5, r6, 0x0, 0xffffffff)
r7 = pidfd_getfd(r6, r4, 0x0)
dup3(r7, r2, 0x80000)
openat$dir(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x42000, 0x0)

11:43:08 executing program 1:
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000000)=""/102, &(0x7f0000000080)=0x66)
getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x9, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
r0 = open_tree(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x1101)
fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000180), &(0x7f00000001c0), 0x2, 0x2)
r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x1640, 0x10, 0xd}, 0x18)
ioctl$AUTOFS_IOC_ASKUMOUNT(r1, 0x80049370, &(0x7f0000000280))
io_cancel(0x0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x8, 0x20, r0, &(0x7f00000002c0)="476db084486882caf53a7f47cd7c2ab682a02ec259af12d2afe47cd51f7c4c1e45dbbd4908c83b3957e747ca372a112fa16c22a6822eaf747f1871964475394acbafde0b94ccb08016575fc4f3ca5c1db4700668387d706055870efbbedbe1d16b194d28be44dbe56a37712dcfb1f372c724b125a4a53206ac4051ed1a785c2dd28dccaa420d88cf20ed4f3bfa9d1b1dc42b3741b65b83d1c50cb387c1031bde531f6f604064ad2173bb2a47cf97d7f4a93379831147209e8ead136f", 0xbc, 0xa527}, &(0x7f00000003c0))
sendfile(r1, r1, 0x0, 0x8001)
r2 = socket$inet6(0xa, 0x6, 0x4)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r2, 0x8982, &(0x7f0000000400)={0x2, 'veth0_to_batadv\x00', {0xa2}, 0x6})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendfile(r3, r1, &(0x7f0000000440)=0x2, 0x3)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000600)={{0x1, 0x1, 0x18, <r4=>r2, {0x100}}, './file0\x00'})
r5 = fcntl$dupfd(0xffffffffffffffff, 0x406, r1)
r6 = memfd_create(&(0x7f0000000640)='\x00', 0x1)
r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000680), 0x6a002, 0x0)
io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f00000006c0)=[r0, r3, r2, r0, r0, r5, r6, r2, r7], 0x9)
r8 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
close_range(0xffffffffffffffff, r8, 0x0)
ioctl$AUTOFS_IOC_EXPIRE(r6, 0x810c9365, &(0x7f0000000700)={{0x1, 0x1ff}, 0x100, './file0\x00'})

11:43:08 executing program 2:
r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x10000)
ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000000))
r1 = syz_io_uring_setup(0x246f, &(0x7f0000000040)={0x0, 0x3fac, 0x38, 0x3, 0x345}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100))
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r1, 0xf503, 0x0)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000140))
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/custom1\x00', 0x0, 0x0)
ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f00000001c0))
r3 = signalfd(0xffffffffffffffff, &(0x7f0000000200), 0x8)
ioctl$GIO_FONT(r3, 0x4b60, &(0x7f0000000240)=""/201)
ioctl$TIOCGPTPEER(r3, 0x5441, 0x5)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa, 0x40010, r1, 0x0)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x8, 0x11, r1, 0x10000000)
syz_io_uring_submit(r6, r7, &(0x7f0000000380)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2000, @fd=r0, 0xe8a, 0x0, 0x0, 0x2, 0x1, {0x1, r5}}, 0x3)
recvmsg$unix(r4, &(0x7f0000000540)={&(0x7f00000003c0), 0x6e, &(0x7f0000000500)=[{&(0x7f0000000440)=""/179, 0xb3}], 0x1}, 0x102)
mkdirat(r4, &(0x7f0000000580)='./file0\x00', 0x80)
ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, &(0x7f00000005c0)="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")
r8 = pidfd_getfd(r4, r4, 0x0)
ioctl$KDSIGACCEPT(r8, 0x4b4e, 0x39)

11:43:08 executing program 3:
ioctl$KDSETMODE(0xffffffffffffffff, 0x4b3a, 0x1)
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f0000000000))
ioctl$VT_GETSTATE(0xffffffffffffffff, 0x5603, &(0x7f0000000040)={0x0, 0x1, 0x8})
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x9900)
r1 = dup2(0xffffffffffffffff, r0)
read(r1, &(0x7f00000000c0)=""/35, 0x23)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f0000000100))
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x103041, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0)
ioctl$TIOCGSERIAL(r2, 0x541e, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=""/217})
ioctl$TCSETAF(r2, 0x5408, &(0x7f0000000300)={0x7ff, 0xfe23, 0x5, 0xcf0b, 0x14, "007a3936141bb785"})
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340), 0x200000, 0x0)
ioctl$TIOCSWINSZ(r3, 0x5414, &(0x7f0000000380)={0x5, 0x8, 0x2, 0x7})
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f00000003c0)={0x5e73, 0x8, 0x4, 0x7fffffff, 0xff, "763fab90b261bd36afed3508bb95e5f777ac14", 0x6, 0xfffffe01})
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000400))
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000440), 0x797a4f3f5c5009ad, 0x0)
ioctl$KDGKBLED(r4, 0x4b64, &(0x7f0000000480))
r5 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x80000000)
ioctl$TIOCSLCKTRMIOS(r5, 0x5457, &(0x7f00000004c0))
ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000500))

11:43:08 executing program 4:
sendmsg$IPSET_CMD_SWAP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x6, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sendmsg$IPSET_CMD_DEL(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x9c, 0xa, 0x6, 0x301, 0x0, 0x0, {0x2, 0x0, 0xa}, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_NAME={0x9, 0x12, 'syz1\x00'}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e20}, @IPSET_ATTR_IFACE={0x14, 0x17, 'vxcan1\x00'}]}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_COMMENT={0x5, 0x1a, '\x00'}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x89}, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x5}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x9c}, 0x1, 0x0, 0x0, 0x5800}, 0x4000)
sendmsg$IPSET_CMD_RENAME(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x48, 0x5, 0x6, 0x101, 0x0, 0x0, {0xc, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x80098}, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x64, 0x0, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PAGE={0x5, 0x1d, 0xe}, @IEEE802154_ATTR_PAN_COORD={0x5, 0x19, 0xff}, @IEEE802154_ATTR_SF_ORD={0x5, 0x18, 0x26}, @IEEE802154_ATTR_SF_ORD={0x5, 0x18, 0x20}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x1f}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x3}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x9}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x9}, @IEEE802154_ATTR_PAGE={0x5}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa1}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0xc0f108c514f81aec)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000580)={0x4f0, r1, 0x90, 0x70bd27, 0x25dfdbfb, {}, [@WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}, @WGDEVICE_A_PEERS={0x9c, 0x8, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x81}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x38}}}]}, {0x78, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x25c9}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "2a350d176aa28d61ad4962c40bb7006bc6d2ee87d7b8c1e81004d74b70845cde"}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e22, @private=0xa010101}}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x6}, @WGDEVICE_A_FLAGS={0x8}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x7f}, @WGDEVICE_A_PEERS={0x3e8, 0x8, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "cc6ce6dec2955fc131748aae01d9fd5f40d17f8663313343f60d4a06bc60ddf2"}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e22, @multicast1}}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x20, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0xff}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @multicast1}}]}, {0xc0, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0xbc, 0x9, 0x0, 0x1, [{0xb8, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x3e}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x41}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}]}]}]}, {0xc8, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e22, 0x7, @mcast1, 0x9}}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x5}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e22, 0x10001, @mcast2, 0x7}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "6e043986e493431670d60d9972e52095aefd49df4d439de6b8e0be198a8fdcf2"}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "0c15db99629fc3412fd5d14865e02b895a9ae238207145bc4a4838c0f943ee8d"}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x8c, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x2}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e22, 0xba, @mcast1, 0x24c1}}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}]}, {0x16c, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0xd0, 0x9, 0x0, 0x1, [{0x4c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x2f}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0xff}}]}, {0x58, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x5, 0x3, 0x2}}]}]}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "38848e9bbcd0e1c6e1e5a7f89eb54ba1310315ca0e2386201c877c428313e105"}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @local}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e22, @loopback}}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x6}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x81}, @WGPEER_A_FLAGS={0x8, 0x3, 0xcbd260a1131f13d3}]}]}]}, 0x4f0}, 0x1, 0x0, 0x0, 0x4884}, 0x40000)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x20, r2, 0x2, 0x1f, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0xffff, 0x65}}}}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x28004001}, 0x4040081)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000c40), 0x80402, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r3, &(0x7f0000000d80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000cc0)={0x4c, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x7}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x9}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x20040000)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r4, &(0x7f0000000ec0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e00)={0x50, 0x0, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x5}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @loopback}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @local}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @broadcast}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @mcast2}]}, 0x50}, 0x1, 0x0, 0x0, 0x4c001}, 0x20000010)
r5 = open_tree(r3, &(0x7f0000000f00)='./file0\x00', 0x0)
sendmsg$TIPC_NL_MEDIA_GET(r5, &(0x7f0000001040)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x68, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x10000}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x49}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x101}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xf92}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x20044081}, 0x4011)
ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, &(0x7f0000001080)={0x100000000})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = creat(&(0x7f00000010c0)='./file0/file0\x00', 0x108)
sendmsg$NL80211_CMD_TDLS_MGMT(r6, &(0x7f00000011c0)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001180)={&(0x7f0000001140)={0x30, r2, 0x10, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x3}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x8081}, 0x20044c04)
sendmsg$NL80211_CMD_GET_STATION(r5, &(0x7f0000001380)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001340)={&(0x7f0000001240)={0xcc, r2, 0x1, 0x70bd29, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_STA_VLAN={0x8}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x71, 0xbe, "02c8beccca4b81f7cacd93c7b9550a78d5a9c22fd6b244c428dc9790f7ad9eab4993a078f13be902426bb32efafbf92b0dc77029c251cfd5c76644acee4bb6a9424300f05468be913cd468c89c4c4377c01d77da0f45e0154af85a4003d51020562f6f0b08ed47a5afd9fc3a82"}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x3}, @NL80211_ATTR_STA_WME={0x14, 0x81, [@NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x24}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x6}]}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x1}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x1}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x1}]}, 0xcc}, 0x1, 0x0, 0x0, 0x5}, 0x8800)

[   95.826915] audit: type=1400 audit(1763206988.240:7): avc:  denied  { execmem } for  pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
11:43:08 executing program 5:
mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x900c2, &(0x7f00000000c0)={'trans=unix,', {[{@access_uid}, {@version_9p2000}, {@noextend}, {@cache_fscache}, {@version_u}, {@privport}, {@access_any}], [{@obj_role={'obj_role', 0x3d, '-$)'}}, {@fowner_eq={'fowner', 0x3d, 0xee00}}]}})
mount$9p_unix(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0xa1404, &(0x7f0000000240)={'trans=unix,', {[{@access_user}, {@access_client}], [{@seclabel}, {@dont_measure}, {@subj_user={'subj_user', 0x3d, '[#['}}, {@audit}, {@dont_hash}, {@appraise_type}]}})
utimes(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300))
getresuid(&(0x7f0000000400)=<r0=>0x0, &(0x7f0000000440)=<r1=>0x0, &(0x7f0000000480))
mount$9p_unix(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), 0x400, &(0x7f00000004c0)={'trans=unix,', {[{@dfltuid}], [{@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '@.('}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@appraise_type}, {@euid_lt={'euid<', r1}}, {@fsmagic={'fsmagic', 0x3d, 0xbe}}]}})
r2 = open_tree(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x80000)
symlinkat(&(0x7f0000000580)='./file0\x00', r2, &(0x7f0000000600)='./file0\x00')
link(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)='./file0\x00')
clock_gettime(0x0, &(0x7f0000000700)={<r3=>0x0, <r4=>0x0})
futimesat(r2, &(0x7f00000006c0)='./file1\x00', &(0x7f0000000740)={{r3, r4/1000+10000}, {0x0, 0x2710}})
syz_mount_image$tmpfs(&(0x7f0000000780), &(0x7f00000007c0)='./file0\x00', 0x0, 0x8, &(0x7f0000000cc0)=[{&(0x7f0000000800)="22a48b343282a778426a851b3a38d415b63e2251bbaeee546c64bd63e1949232e0064834f3d5afe4aa09f67d5e1f143f0005525f8ace878f168f39517b231079df2a42ef05ebf52d9d145e57e92a4fe2a4e9ee3782d9d3982cc0c11424ef77fc4f9900bb1588b006c8ef5663b239c0e373f42877f0", 0x75, 0xc75}, {&(0x7f0000000880)="435d002ba211ec832767a69cbb45b1194e83e1ff4aaa2afd565c076e23591f70a4725d025fe392980ca778803d6334cd7af75c166a33540319cc4e996f46d1ac1df506912c8f0d8d5f7ae2287e9d9840ae08049c2b32538461a8795a4034e392672f668818ed944c2ca2c277a8474073bd65a0f2879f60bc699a70138b291edbaf96e550e41cd7d5cf8abfed061bbeb42f7cb0da0dab32a50fd76a36829e7d91d0f6efcb1f1a292ddb4841de4f4c157ceb021a", 0xb3, 0x4}, {&(0x7f0000000940)="ccd099e3a6333ef3b3f56e8dc2ade801a8e1", 0x12, 0x68}, {&(0x7f0000000980)="118a3828f06f9a71fb950158138ef659dde1434a638a65594fdfc27113685974aea486a36ee3666da0b3d40a9623bc4a0d8fff61c2c30ad282bab4b2ba3d68cb3fd79a0daf4830dd07b26c5700e206d235a525293d631b4b3fa6cc0ca578e48b952cb05e73ff641a286edfe41fc8b3e5c0b44d3705417cc5c87e59943d1e2836c9568e3830e8e2949c3efec4515e3da2364508e416dd6384312e62a6b1b79f5b9077aefc9ceec1eadab1eeed0298eaea43c86d50801e33fff681ef38d545a0dc755b7b", 0xc3, 0x7}, {&(0x7f0000000a80)="bfcfc1219ae32b19094af35e89d09df877319e2e7cec76926f04b9ca142cce896917d1cd63cd1f25d401755db064b99b30f9e0bcb02332f5362e413f61e354ac226f48dee06d45b9037b93758ad5aacfaab89735e0b108cb35b0ae20ed47ede112a2785b9c4c4a5e8930ad6461c48db4f2d50fe9834619941f15f1fc1585f6933494dcfd", 0x84, 0xfffffffffffffffb}, {&(0x7f0000000b40)="a0190857951040ee1a89ab083d52", 0xe, 0x8}, {&(0x7f0000000b80)="1ba6a633f9144632784dc9621753e95253d9473fa4b8d25d63a9929552da7bc2b69569c039234d7ef6decda32746b58c81a650a8e8cd349b65ec8400bda3a2d2d404b41783ed288455751c2b251ea82ce54919021d3e47e13a9f198d79d1a29ee53e67712fea02bbf507355c68a14432c8d45e4ccc36af7bb2c44e9fbdb33060a69726476a80c2be12c630725c6c4247ceb8c454022edb8f6e7288e8da83944bc6de30", 0xa3, 0x7fffffff}, {&(0x7f0000000c40)="7da109dc9e2023eb8ba0eac8dae6c9f729523ba0a1a76255fbdb35a77df18d70395c6acc14bddb776d40d06f9bfd7efe446bc1f3e68804571009c67d20bdd2fc4532433786", 0x45, 0x7}], 0x22000a, &(0x7f0000000d80)={[{@huge_advise}, {@huge_within_size}, {@huge_advise}, {@size={'size', 0x3d, [0x30]}}, {@huge_never}], [{@seclabel}]})
syz_mount_image$iso9660(&(0x7f0000000e00), &(0x7f0000000e40)='./file1\x00', 0xffff, 0x1, &(0x7f0000000ec0)=[{&(0x7f0000000e80)="8f2e7cf4fe350010bd5a2d3e", 0xc, 0xffff}], 0x808, &(0x7f0000000f00)={[{@overriderock}, {}, {@map_normal}], [{@smackfsroot}, {@fowner_eq}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@dont_measure}, {@smackfsdef={'smackfsdef', 0x3d, 'dont_hash'}}]})
semtimedop(0x0, &(0x7f0000000fc0)=[{0x2, 0x81}, {0x0, 0x1, 0x800}, {0x4, 0x7f, 0x1000}], 0x3, &(0x7f0000001000)={0x77359400})
syz_mount_image$tmpfs(&(0x7f0000001040), &(0x7f0000001080)='./file0\x00', 0x6, 0x1, &(0x7f0000001180)=[{&(0x7f00000010c0)="22c96d3ecf244fcb8d4a3a604705b93fc3c5819de121a9969315d2e5f8ade2b7df9bbad3a339288a0640f5be5f1eb551f155b28064228605f8fc6bf26a31912a6a5ac246dd7fe850c3a09f01c2c99746a832a09f12204b654027cb9705bd79c4b7bdfd02d1fadcaae153cd241c3b3a5bab40240b79216cec3615f57c3bdf28b3026fc34d7c7e36cfe6cb4548d840490af6068c551f", 0x95, 0x1000}], 0x20c6021, &(0x7f00000011c0)={[{@mpol={'mpol', 0x3d, {'local', '', @void}}}]})
syz_mount_image$tmpfs(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x8001, 0x6, &(0x7f0000001700)=[{&(0x7f0000001280)="34772cad3af53940796269c0eddeacd6cb291b1e5982fa580b877eaff718e46c3406fb23da8c3329adfc0c873dc5215cf90ad92d4dc582700465168ed08e4c5d0191ba6126810a933a623623d7722283446de188654b2b62990444072393ca00e3eda49b575bcef3d2a34fae26f0c1d751bb615be3650bfb6aa9337ac3866b1e918e3203f3", 0x85, 0x804}, {&(0x7f0000001340)="c2c8150302e485aba38507290be6715e738bf719806c9ee2c765233a6165dc950a9c38bb7ad7bdb2186384c476a1be396d2298310769071ebd10543a6280eede817289f8bbbbb231cdc8fc253bd56ec85015dcdf2a7a490036d5ca7ac5b17ee332ac28642decc3bbc1855cf7ad88c115866d89e5d048e7233738c40623690d875dda0eaf8041388285ef76602b93795d9452e609711684b9d65c7225b9356f53d04a1ed0f4ca7a95b750bffd909a7d", 0xaf, 0x3}, {&(0x7f0000001400)="649d95cf3be7ed70ff4da75d89ac076f81b053fadd10cdee73", 0x19, 0x9}, {&(0x7f0000001440)="d8194b6e19115b309ac09c9f9d26ed9db8346cb38daa6653d0257c10c055f67dacd349ca8ef8fe080ec0cb66974871c6b93212287f252021a10994bb76f8bae27f407e46bf30b31126661dd3aaac6a72c150622c87a93f5961478774cdc9e6e53180f9f6e36c153a415e3b2fec3077af9ba8bdcf31a0a0a2a8ba76873002bd7378af349fc3d8d01c283cec6c51163ad5bb6e0bb0f73767fcc6735f6d8c5018305c87093d0493c69454075e5faed2f0c64f747956b9a65a174b245d1f93ff39be268ae819dd1817c1c368860f6554c343d065861b2113e6423add6c8acd30e1a3fe9b44", 0xe3, 0x3f}, {&(0x7f0000001540)="7c06531ed84f785c45f657edd684821f8937e6fca9c22ab6639efeac9b496a5c2c084f42de3125d2ecc808741407f5a29ac0007ad1e2e169bf15e82c752c1f86e9eea3bcff1dd7afe01dc88c556bc15d20f96ff3d04d6c745ea3fc9244254e029dfe5d060de1da828bc65446dc26490b784604c541b523067b36d0301a399842d628ac4bf02ceaa2295e309ba560efca62ef242723e2063959bf2dd7526b828b8a32e6431e1b353bc9cfbe427b9cc7e385d283d8b882d32fea599c4391d10f97290627d6e374ea8d01", 0xc9, 0x81}, {&(0x7f0000001640)="3bf7e40c84ce911b2749f5cd97e7184fbbeceff453e43f18ee8589137e63ee8fce0c44073a5196e7c464256c8a94eefb1ca45ebf20a183cd428c5dce9064af4d4e3a420f873d62685f6475345f90ce0a781f7e2eb1a1178f31770a309c51659d1ed3fcb48d97f7a6fe77c7e55114738e8a7b0f8933a16650af6686281940639407075a95ec1396ce8dc7dafdc94b092768f0a424474a852c926f31763638f85ee1361f584ff394e6f6ef0778c5e73265e3bdfaad68", 0xb5, 0x7f}], 0x2001410, &(0x7f00000017c0)={[{@gid={'gid', 0x3d, 0xee00}}, {@uid={'uid', 0x3d, r0}}, {@uid={'uid', 0x3d, r1}}, {@mpol={'mpol', 0x3d, {'bind', '', @val={0x3a, [0x31]}}}}], [{@mask={'mask', 0x3d, 'MAY_APPEND'}}]})
r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000001840), 0x240942, 0x0)
recvmmsg$unix(r5, &(0x7f00000042c0)=[{{&(0x7f0000001880)=@abs, 0x6e, &(0x7f0000002b80)=[{&(0x7f0000001900)=""/194, 0xc2}, {&(0x7f0000001a00)=""/35, 0x23}, {&(0x7f0000001a40)=""/189, 0xbd}, {&(0x7f0000001b00)=""/4096, 0x1000}, {&(0x7f0000002b00)}, {&(0x7f0000002b40)=""/41, 0x29}], 0x6, &(0x7f0000002c00)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x70}}, {{&(0x7f0000002c80), 0x6e, &(0x7f0000002d80)=[{&(0x7f0000002d00)=""/7, 0x7}, {&(0x7f0000002d40)=""/43, 0x2b}], 0x2, &(0x7f0000002dc0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}}, {{&(0x7f0000002e00)=@abs, 0x6e, &(0x7f0000004180)=[{&(0x7f0000002e80)=""/159, 0x9f}, {&(0x7f0000002f40)=""/174, 0xae}, {&(0x7f0000003000)=""/65, 0x41}, {&(0x7f0000003080)=""/4096, 0x1000}, {&(0x7f0000004080)=""/211, 0xd3}], 0x5, &(0x7f0000004200)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x68}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000004280)=[@cred={{0x1c}}], 0x20}}], 0x4, 0x10001, &(0x7f00000043c0))
umount2(&(0x7f0000004400)='./file1\x00', 0x4)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000004500)={0x0, <r7=>0x0}, &(0x7f0000004540)=0xc)
mount$9p_tcp(&(0x7f0000004440), &(0x7f0000004480)='./file1\x00', &(0x7f00000044c0), 0x80000, &(0x7f0000004580)={'trans=tcp,', {'port', 0x3d, 0x4e23}, 0x2c, {[], [{@obj_role}, {@smackfsroot={'smackfsroot', 0x3d, 'local'}}, {@appraise}, {@euid_lt={'euid<', r7}}, {@euid_eq}]}})

11:43:08 executing program 6:
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000000)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0xac, 0x7, 0x7, 0x1ff, 0x2, 0x6, 0x4b, 0x177, 0x38, 0x93, 0x7, 0x14, 0x20, 0x1, 0x1ff, 0xffff, 0xfff}, [{0x1, 0x9, 0x5, 0x636, 0x1, 0x51, 0x9, 0xb988}], "b3a27d788b78759ab0c298c6bdfd9e5337f2e4358762d9cf83d49ff50e60278e30dd1dde42d5a37d2ca6f6a3e0c130dc8dedeebb696365b3907d38c7b0f219f87ec168295d3dab0752ee2b19a1db27556b7f4cf6d6a7ca778f97941bd5cf5b8cda0f5e8631f4f05453f7bbaa8e4b8946b9bddbead217b23064d6af9f663a0d80fb64a982fab03282d1c8a1d1123ed9753a932a480e5aa7e8338220fd7eb1b318b1512d05421584c48f3ab8f549c685d073073680be8ab152dcc625a2ab4b0af50893c573f729604922a455dc0f779f19128377d784f9a32d2e5498ad20a23cfcfa4d8f584d", ['\x00', '\x00']}, 0x33d)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(0xffffffffffffffff, 0x40047211, &(0x7f0000000340)=0x10)
getsockname$netlink(0xffffffffffffffff, &(0x7f0000000380), &(0x7f00000003c0)=0xc)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000440)={&(0x7f0000ffa000/0x4000)=nil, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000eb3000/0x4000)=nil, &(0x7f0000faf000/0x1000)=nil, &(0x7f0000d6e000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000e69000/0x1000)=nil, &(0x7f0000d69000/0x4000)=nil, &(0x7f0000e15000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000400)="5a7df7f23765acb8224ef6e82f6c84f2e523830c89a0a717b947ddb58b3f712d378fa758953e929d", 0x28, r0}, 0x68)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000004c0))
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000006c0)='cpuacct.usage_percpu_user\x00', 0x0, 0x0)
read(r1, &(0x7f0000000700)=""/179, 0xb3)
r2 = getpgrp(0xffffffffffffffff)
r3 = getpid()
sendmsg$nl_generic(r1, &(0x7f0000002e00)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000002dc0)={&(0x7f0000001a40)={0x1360, 0x34, 0x20, 0x70bd2d, 0x25dfdbfd, {0xd}, [@nested={0x8d, 0x44, 0x0, 0x1, [@typed={0x14, 0x75, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0x5, 0x47, 0x0, 0x0, @str='\x00'}, @generic, @generic="8643ef4c04ac89896cb5e13155215a2d3481c5977490b05e03b06a3446cc6e9d5125a00686a7696011a937be75d84b7614956c5c3317c1e5197d3ce513456afba1759208b85efb426f05664168bd81af69d1a38f6474abca194c190e03d944b3bf4a2784c1d2615d3fb522707b"]}, @typed={0x4, 0x3c}, @nested={0x1d4, 0x18, 0x0, 0x1, [@generic="dd1c0660d452737846aecb91b22f4742e7a8ae5862879e3a682a8dbf6df6f9a5d3cb7ab521cda576", @generic="ab7efaa64a6570e298309e3ef5a4b73f779a7d05078d1a8a58aecca579961cd3a01f74eb52ec036f0bf50eac2eee77cad85eb464cb1f3c02493b37932652f60230619040472c2d125c3d3aa28c6760f80b23b2e0d570c8342bb11e1e1fd771f48e1a304e19a76dd77a1ba72aa13cb84656fe41023ac9d50ddf91d764a5e4ea13feb008b383", @generic="ceed776488980c44e12dbaef136d15e905b68167", @typed={0x14, 0x45, 0x0, 0x0, @ipv6=@private1}, @typed={0xad, 0x8a, 0x0, 0x0, @binary="60914e5e7cf972a9f12a3fefbd96f3f69ebf6533a095e79861782d1a8388cdad26c233dc335fda4a9c89d5726da4303e4c5b4b7ba6696b4225a54a99ec4af38b7983a89d637d98b8effec2ab6e4c8e8d4c62600a3a18779cff8af1c5ddd192fac3e2883f868318de8eb63cf7353566e5f9606b35b69d5c64a3c6cda188e90144815b1d730af77e246cb6f5334a2f82a03851d05907851123828945c85f0ed50952ab999ba96544f3a7"}, @typed={0x8, 0xd, 0x0, 0x0, @pid}, @typed={0x8, 0x44, 0x0, 0x0, @pid=r2}, @generic="d103ab8eb4d4997269900894f5e6d5ee803008faae6f2631311eca75b5045203502ab5814a4c1dd1ccaca6e328bcf81bd56685bd764b38c61cb35a"]}, @nested={0x10a0, 0x33, 0x0, 0x1, [@typed={0x8, 0x77, 0x0, 0x0, @ipv4=@broadcast}, @generic="9f0934fba2b4e7b1701ed20cb6b0463c226b928cd09d920e48", @typed={0x4, 0x8a}, @typed={0x8, 0x73, 0x0, 0x0, @pid=r3}, @typed={0x8, 0x3d, 0x0, 0x0, @u32=0x2}, @generic="b64c76a36cf6f4bcb32883be03c51581ec289fa3367fcf4b5671e9c93cf940e7bbee126b12994d2f0d6a8dbec73d4c1a5dfdee31a9cd9ff5116f86e217a8284bfc02fc6e986cd75c3cb09e", @typed={0x1c, 0x75, 0x0, 0x0, @binary="5e7e46c6722a42df1ddaca24c82cd6e496e9196c4ecf83a2"}, @generic="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"]}, @generic="bda959209952c69dc65ed8434a19ca276998579465f88d", @generic="861fc7360a29553fc0d3133cf626238a11eac907fe7e9d4da5988ae5d8ef12b451091ac25efcc9ddf8ebb710"]}, 0x1360}}, 0x4000880)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000002e80), r1)
sendmsg$BATADV_CMD_TP_METER_CANCEL(r1, &(0x7f0000002f80)={&(0x7f0000002e40)={0x10, 0x0, 0x0, 0x8d9baa967fc5f319}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ec0)={0x50, r4, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1f}}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x7}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x50}}, 0x10)
r5 = syz_open_procfs(r2, &(0x7f0000002fc0)='cmdline\x00')
sendmsg$NL80211_CMD_FLUSH_PMKSA(r5, &(0x7f00000030c0)={&(0x7f0000003000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000003080)={&(0x7f0000003040)={0x14, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x24004000}, 0x4000)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f0000003400)={&(0x7f0000003100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000033c0)={&(0x7f0000003140)={0x25c, 0x0, 0x300, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x138, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x200}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x36a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfff}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x653}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}]}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xffffffe1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x800}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xfeaf}]}, @TIPC_NLA_SOCK={0x68, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfffffffc}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x81}]}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1000}]}]}, @TIPC_NLA_MEDIA={0x74, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x401}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xdb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xa9}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xcea1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}]}]}, 0x25c}, 0x1, 0x0, 0x0, 0x4050014}, 0x40048001)
capset(&(0x7f0000003440)={0x19980330, r2}, &(0x7f0000003480)={0x4, 0xfffff001, 0x401, 0x9, 0x4, 0x2})
r6 = open_tree(r1, &(0x7f00000034c0)='./file0\x00', 0x9000)
r7 = fsmount(0xffffffffffffffff, 0x1, 0x8)
ioctl$AUTOFS_DEV_IOCTL_READY(r6, 0xc0189376, &(0x7f0000003500)={{0x1, 0x1, 0x18, r7, {0x1}}, './file0\x00'})

[   96.968940] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   96.975428] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   96.977962] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   96.980745] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   96.982014] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   96.983072] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   96.985245] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   96.987049] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   96.989749] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   96.995042] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   97.001225] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   97.003426] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   97.010183] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   97.021819] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   97.024171] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   97.029013] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   97.031114] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   97.034758] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   97.035871] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   97.041972] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   97.105060] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   97.107396] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   97.112960] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   97.114595] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   97.115517] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   97.120272] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   97.120368] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   97.121555] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   97.124848] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   97.127790] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   97.134791] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   97.137560] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   97.139196] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   97.153643] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   97.160740] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   97.167713] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   97.168994] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   97.171020] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   97.172691] ==================================================================
[   97.173756] BUG: KASAN: slab-use-after-free in hci_cmd_work+0x66d/0x6d0
[   97.174817] Read of size 2 at addr ffff88800d9973f8 by task kworker/u11:7/310
[   97.176152] 
[   97.178963] CPU: 1 UID: 0 PID: 310 Comm: kworker/u11:7 Not tainted 6.18.0-rc5-next-20251114 #1 PREEMPT(voluntary) 
[   97.178993] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   97.179008] Workqueue: hci6 hci_cmd_work
[   97.179037] Call Trace:
[   97.179045]  <TASK>
[   97.179053]  dump_stack_lvl+0xca/0x120
[   97.179081]  print_report+0xcb/0x610
[   97.179108]  ? __virt_addr_valid+0x100/0x5d0
[   97.179133]  ? hci_cmd_work+0x66d/0x6d0
[   97.179159]  ? hci_cmd_work+0x66d/0x6d0
[   97.179186]  kasan_report+0xca/0x100
[   97.179212]  ? hci_cmd_work+0x66d/0x6d0
[   97.179241]  hci_cmd_work+0x66d/0x6d0
[   97.179269]  process_one_work+0x8e1/0x19c0
[   97.179304]  ? __pfx_process_one_work+0x10/0x10
[   97.179334]  ? move_linked_works+0x172/0x270
[   97.179357]  ? assign_work+0x196/0x240
[   97.179386]  worker_thread+0x67e/0xe90
[   97.179415]  ? trace_irq_enable.constprop.0+0xc2/0x100
[   97.179440]  ? __pfx_worker_thread+0x10/0x10
[   97.179470]  kthread+0x3c8/0x740
[   97.179496]  ? __pfx_kthread+0x10/0x10
[   97.179522]  ? ret_from_fork+0x79/0x7a0
[   97.179543]  ? lock_release+0xc8/0x290
[   97.179574]  ? __pfx_kthread+0x10/0x10
[   97.179601]  ret_from_fork+0x67a/0x7a0
[   97.179621]  ? __pfx_ret_from_fork+0x10/0x10
[   97.179643]  ? __switch_to+0x759/0x1060
[   97.179671]  ? __pfx_kthread+0x10/0x10
[   97.179698]  ret_from_fork_asm+0x1a/0x30
[   97.179747]  </TASK>
[   97.179754] 
[   97.199595] Allocated by task 298:
[   97.200129]  kasan_save_stack+0x24/0x50
[   97.200706]  kasan_save_track+0x14/0x30
[   97.201284]  __kasan_slab_alloc+0x59/0x70
[   97.201889]  kmem_cache_alloc_node_noprof+0x228/0x6b0
[   97.202638]  __alloc_skb+0x2ab/0x370
[   97.203190]  hci_cmd_sync_alloc+0x34/0x300
[   97.203829]  __hci_cmd_sync_sk+0xf7/0x5c0
[   97.204462]  hci_read_num_supported_iac_sync+0x2c/0x170
[   97.205228]  hci_dev_open_sync+0x1874/0x1f60
[   97.205860]  hci_power_on+0xdb/0x5d0
[   97.206405]  process_one_work+0x8e1/0x19c0
[   97.207024]  worker_thread+0x67e/0xe90
[   97.207599]  kthread+0x3c8/0x740
[   97.208122]  ret_from_fork+0x67a/0x7a0
[   97.208693]  ret_from_fork_asm+0x1a/0x30
[   97.209304] 
[   97.209558] Freed by task 305:
[   97.210035]  kasan_save_stack+0x24/0x50
[   97.210615]  kasan_save_track+0x14/0x30
[   97.211194]  kasan_save_free_info+0x3a/0x60
[   97.211836]  __kasan_slab_free+0x43/0x70
[   97.212433]  kmem_cache_free+0x26f/0x500
[   97.213035]  kfree_skbmem+0x18a/0x1f0
[   97.213592]  sk_skb_reason_drop+0x10e/0x1b0
[   97.214208]  vhci_read+0x3d5/0x5d0
[   97.214732]  vfs_read+0x1eb/0xc70
[   97.215245]  ksys_read+0x121/0x240
[   97.215772]  do_syscall_64+0xbf/0x430
[   97.216329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.217066] 
[   97.217319] The buggy address belongs to the object at ffff88800d9973c0
[   97.217319]  which belongs to the cache skbuff_head_cache of size 232
[   97.219141] The buggy address is located 56 bytes inside of
[   97.219141]  freed 232-byte region [ffff88800d9973c0, ffff88800d9974a8)
[   97.220851] 
[   97.221104] The buggy address belongs to the physical page:
[   97.221911] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xd997
[   97.223050] memcg:ffff88800dfc9301
[   97.223561] flags: 0x100000000000000(node=0|zone=1)
[   97.224289] page_type: f5(slab)
[   97.224775] raw: 0100000000000000 ffff8880096c78c0 ffffea0000355b00 dead000000000002
[   97.225888] raw: 0000000000000000 00000000000c000c 00000000f5000000 ffff88800dfc9301
[   97.226978] page dumped because: kasan: bad access detected
[   97.227778] 
[   97.228035] Memory state around the buggy address:
[   97.228758]  ffff88800d997280: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   97.229827]  ffff88800d997300: 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc
[   97.230885] >ffff88800d997380: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[   97.231938]                                                                 ^
[   97.232954]  ffff88800d997400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   97.233987]  ffff88800d997480: fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc
[   97.235012] ==================================================================
[   97.236290] Disabling lock debugging due to kernel taint
[   97.237971] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   97.266067] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   99.061531] Bluetooth: hci1: command tx timeout
[   99.061985] Bluetooth: hci2: command tx timeout
[   99.126495] Bluetooth: hci0: command tx timeout
[   99.126932] Bluetooth: hci3: command tx timeout
[   99.318465] Bluetooth: hci7: command tx timeout
[   99.318891] Bluetooth: hci5: command tx timeout
[   99.319261] Bluetooth: hci4: command tx timeout
[   99.320209] Bluetooth: hci6: command tx timeout
[  101.110507] Bluetooth: hci1: command tx timeout
[  101.110953] Bluetooth: hci2: command tx timeout
[  101.174564] Bluetooth: hci0: command tx timeout
[  101.174974] Bluetooth: hci3: command tx timeout
[  101.366363] Bluetooth: hci6: command tx timeout
[  101.367101] Bluetooth: hci4: command tx timeout
[  101.367502] Bluetooth: hci5: command tx timeout
[  101.367891] Bluetooth: hci7: command tx timeout
[  103.157511] Bluetooth: hci2: command tx timeout
[  103.157998] Bluetooth: hci1: command tx timeout
[  103.221477] Bluetooth: hci3: command tx timeout
[  103.221936] Bluetooth: hci0: command tx timeout
[  103.414516] Bluetooth: hci7: command tx timeout
[  103.414950] Bluetooth: hci5: command tx timeout
[  103.415307] Bluetooth: hci4: command tx timeout
[  103.416246] Bluetooth: hci6: command tx timeout
[  105.205481] Bluetooth: hci1: command tx timeout
[  105.205905] Bluetooth: hci2: command tx timeout
[  105.270477] Bluetooth: hci0: command tx timeout
[  105.270890] Bluetooth: hci3: command tx timeout
[  105.461518] Bluetooth: hci6: command tx timeout
[  105.461937] Bluetooth: hci4: command tx timeout
[  105.462303] Bluetooth: hci5: command tx timeout
[  105.463007] Bluetooth: hci7: command tx timeout

VM DIAGNOSIS:
11:43:09  Registers:
info registers vcpu 0
RAX=0000000000000001 RBX=ffffea0001ae1600 RCX=ffffffff81a527ec RDX=fffff9400035c2c7
RSI=0000000000000004 RDI=ffffea0001ae1630 RBP=0000000000000001 RSP=ffff8880161cf540
R8 =0000000000000001 R9 =fffff9400035c2c6 R10=ffffea0001ae1633 R11=0000000000000001
R12=ffffea0001ae1600 R13=0000000000000000 R14=ffff888009c6cdc0 R15=ffffea0001ae1630
RIP=ffffffff81a527f3 RFL=00000213 [----A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e538f000 00000000 00000000
LDT=0000 fffffe1600000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055e516c418f0 CR3=0000000009d63000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=2039303a33343a313120353120766f4e XMM01=5d3032303137312e37392020205b203a
XMM02=20383363307830206363206465746365 XMM03=6f7465756c42205d3032303137312e37
XMM04=2038303a33343a313120353120766f4e XMM05=65636f72703d7373616c63742030733a
XMM06=733a755f6d65747379733d747865746e XMM07=725f6d65747379733a755f6d65747379
XMM08=7475636578652d7a7973223d6d6d6f63 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff8293dc70 RDI=ffffffff889747c0 RBP=ffffffff88974780 RSP=ffff888017ce7620
R8 =00000000ffffffff R9 =ffffed1002f9ceb5 R10=0000000000000000 R11=000000003a555043
R12=0000000000000076 R13=ffffffff889747d0 R14=ffffffff88974780 R15=ffffffff88974a40
RIP=ffffffff8293dcc5 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e548f000 00000000 00000000
LDT=0000 fffffe5100000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055bc4cd99008 CR3=000000000f19e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007ff5a54557c000007ff5a54557c8
XMM02=00007ff5a54557e000007ff5a54557c0 XMM03=00007ff5a54557c800007ff5a54557c0
XMM04=ffffffffffffffffffffffffffffff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000