Warning: Permanently added '[localhost]:60694' (ECDSA) to the list of known hosts.
2025/11/15 12:05:32 fuzzer started
2025/11/15 12:05:32 dialing manager at localhost:37161
syzkaller login: [   51.890950] cgroup: Unknown subsys name 'net'
[   51.952746] cgroup: Unknown subsys name 'cpuset'
[   51.965892] cgroup: Unknown subsys name 'rlimit'
2025/11/15 12:05:42 syscalls: 2214
2025/11/15 12:05:42 code coverage: enabled
2025/11/15 12:05:42 comparison tracing: enabled
2025/11/15 12:05:42 extra coverage: enabled
2025/11/15 12:05:42 setuid sandbox: enabled
2025/11/15 12:05:42 namespace sandbox: enabled
2025/11/15 12:05:42 Android sandbox: enabled
2025/11/15 12:05:42 fault injection: enabled
2025/11/15 12:05:42 leak checking: enabled
2025/11/15 12:05:42 net packet injection: enabled
2025/11/15 12:05:42 net device setup: enabled
2025/11/15 12:05:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/11/15 12:05:42 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/11/15 12:05:42 USB emulation: enabled
2025/11/15 12:05:42 hci packet injection: enabled
2025/11/15 12:05:42 wifi device emulation: enabled
2025/11/15 12:05:42 802.15.4 emulation: enabled
2025/11/15 12:05:42 fetching corpus: 50, signal 20860/22699 (executing program)
2025/11/15 12:05:42 fetching corpus: 100, signal 32759/36279 (executing program)
2025/11/15 12:05:42 fetching corpus: 150, signal 43188/48208 (executing program)
2025/11/15 12:05:42 fetching corpus: 200, signal 48634/55160 (executing program)
2025/11/15 12:05:42 fetching corpus: 250, signal 58382/66193 (executing program)
2025/11/15 12:05:43 fetching corpus: 300, signal 66204/75246 (executing program)
2025/11/15 12:05:43 fetching corpus: 350, signal 71235/81550 (executing program)
2025/11/15 12:05:43 fetching corpus: 400, signal 74116/85742 (executing program)
2025/11/15 12:05:43 fetching corpus: 450, signal 78086/90936 (executing program)
2025/11/15 12:05:43 fetching corpus: 500, signal 80768/94857 (executing program)
2025/11/15 12:05:43 fetching corpus: 550, signal 84704/99848 (executing program)
2025/11/15 12:05:43 fetching corpus: 600, signal 87818/104053 (executing program)
2025/11/15 12:05:43 fetching corpus: 650, signal 89768/107154 (executing program)
2025/11/15 12:05:43 fetching corpus: 700, signal 91200/109750 (executing program)
2025/11/15 12:05:44 fetching corpus: 750, signal 92525/112230 (executing program)
2025/11/15 12:05:44 fetching corpus: 800, signal 94996/115725 (executing program)
2025/11/15 12:05:44 fetching corpus: 850, signal 96539/118389 (executing program)
2025/11/15 12:05:44 fetching corpus: 900, signal 99016/121770 (executing program)
2025/11/15 12:05:44 fetching corpus: 950, signal 100927/124638 (executing program)
2025/11/15 12:05:44 fetching corpus: 1000, signal 102554/127256 (executing program)
2025/11/15 12:05:44 fetching corpus: 1050, signal 104611/130214 (executing program)
2025/11/15 12:05:44 fetching corpus: 1100, signal 106444/132995 (executing program)
2025/11/15 12:05:44 fetching corpus: 1150, signal 107606/135185 (executing program)
2025/11/15 12:05:44 fetching corpus: 1200, signal 110079/138435 (executing program)
2025/11/15 12:05:45 fetching corpus: 1250, signal 111773/140998 (executing program)
2025/11/15 12:05:45 fetching corpus: 1300, signal 113374/143478 (executing program)
2025/11/15 12:05:45 fetching corpus: 1350, signal 117195/147739 (executing program)
2025/11/15 12:05:45 fetching corpus: 1400, signal 119440/150638 (executing program)
2025/11/15 12:05:45 fetching corpus: 1450, signal 121358/153225 (executing program)
2025/11/15 12:05:45 fetching corpus: 1500, signal 122286/155073 (executing program)
2025/11/15 12:05:45 fetching corpus: 1550, signal 123512/157100 (executing program)
2025/11/15 12:05:45 fetching corpus: 1600, signal 124841/159202 (executing program)
2025/11/15 12:05:45 fetching corpus: 1650, signal 126308/161353 (executing program)
2025/11/15 12:05:45 fetching corpus: 1700, signal 127613/163390 (executing program)
2025/11/15 12:05:45 fetching corpus: 1750, signal 128711/165257 (executing program)
2025/11/15 12:05:45 fetching corpus: 1800, signal 130554/167619 (executing program)
2025/11/15 12:05:46 fetching corpus: 1850, signal 131809/169525 (executing program)
2025/11/15 12:05:46 fetching corpus: 1900, signal 132621/171126 (executing program)
2025/11/15 12:05:46 fetching corpus: 1950, signal 133826/173003 (executing program)
2025/11/15 12:05:46 fetching corpus: 2000, signal 134686/174618 (executing program)
2025/11/15 12:05:46 fetching corpus: 2050, signal 135504/176203 (executing program)
2025/11/15 12:05:46 fetching corpus: 2100, signal 136841/178079 (executing program)
2025/11/15 12:05:46 fetching corpus: 2150, signal 137709/179645 (executing program)
2025/11/15 12:05:46 fetching corpus: 2200, signal 138475/181115 (executing program)
2025/11/15 12:05:46 fetching corpus: 2250, signal 139596/182852 (executing program)
2025/11/15 12:05:47 fetching corpus: 2300, signal 140609/184487 (executing program)
2025/11/15 12:05:47 fetching corpus: 2350, signal 141797/186206 (executing program)
2025/11/15 12:05:47 fetching corpus: 2400, signal 143240/188111 (executing program)
2025/11/15 12:05:47 fetching corpus: 2450, signal 144066/189588 (executing program)
2025/11/15 12:05:47 fetching corpus: 2500, signal 144981/191086 (executing program)
2025/11/15 12:05:47 fetching corpus: 2550, signal 145544/192342 (executing program)
2025/11/15 12:05:47 fetching corpus: 2600, signal 146671/193962 (executing program)
2025/11/15 12:05:47 fetching corpus: 2650, signal 148053/195704 (executing program)
2025/11/15 12:05:47 fetching corpus: 2700, signal 149166/197288 (executing program)
2025/11/15 12:05:47 fetching corpus: 2750, signal 150196/198807 (executing program)
2025/11/15 12:05:48 fetching corpus: 2800, signal 150949/200123 (executing program)
2025/11/15 12:05:48 fetching corpus: 2850, signal 151567/201303 (executing program)
2025/11/15 12:05:48 fetching corpus: 2900, signal 152006/202394 (executing program)
2025/11/15 12:05:48 fetching corpus: 2950, signal 152509/203553 (executing program)
2025/11/15 12:05:48 fetching corpus: 3000, signal 153198/204824 (executing program)
2025/11/15 12:05:48 fetching corpus: 3050, signal 154459/206390 (executing program)
2025/11/15 12:05:48 fetching corpus: 3100, signal 154981/207520 (executing program)
2025/11/15 12:05:48 fetching corpus: 3150, signal 155576/208676 (executing program)
2025/11/15 12:05:49 fetching corpus: 3200, signal 156398/209978 (executing program)
2025/11/15 12:05:49 fetching corpus: 3250, signal 156968/211069 (executing program)
2025/11/15 12:05:49 fetching corpus: 3300, signal 158353/212630 (executing program)
2025/11/15 12:05:49 fetching corpus: 3350, signal 159047/213806 (executing program)
2025/11/15 12:05:49 fetching corpus: 3400, signal 159721/214985 (executing program)
2025/11/15 12:05:49 fetching corpus: 3450, signal 160292/216126 (executing program)
2025/11/15 12:05:49 fetching corpus: 3500, signal 160820/217161 (executing program)
2025/11/15 12:05:49 fetching corpus: 3550, signal 161425/218233 (executing program)
2025/11/15 12:05:49 fetching corpus: 3600, signal 162204/219374 (executing program)
2025/11/15 12:05:49 fetching corpus: 3650, signal 162793/220410 (executing program)
2025/11/15 12:05:49 fetching corpus: 3700, signal 163373/221487 (executing program)
2025/11/15 12:05:50 fetching corpus: 3750, signal 164017/222531 (executing program)
2025/11/15 12:05:50 fetching corpus: 3800, signal 164609/223547 (executing program)
2025/11/15 12:05:50 fetching corpus: 3850, signal 165125/224549 (executing program)
2025/11/15 12:05:50 fetching corpus: 3900, signal 165731/225586 (executing program)
2025/11/15 12:05:50 fetching corpus: 3950, signal 166219/226564 (executing program)
2025/11/15 12:05:50 fetching corpus: 4000, signal 166843/227590 (executing program)
2025/11/15 12:05:50 fetching corpus: 4050, signal 167526/228691 (executing program)
2025/11/15 12:05:50 fetching corpus: 4100, signal 168485/229845 (executing program)
2025/11/15 12:05:50 fetching corpus: 4150, signal 168971/230826 (executing program)
2025/11/15 12:05:51 fetching corpus: 4200, signal 169703/231854 (executing program)
2025/11/15 12:05:51 fetching corpus: 4250, signal 170130/232807 (executing program)
2025/11/15 12:05:51 fetching corpus: 4300, signal 170784/233799 (executing program)
2025/11/15 12:05:51 fetching corpus: 4350, signal 171435/234709 (executing program)
2025/11/15 12:05:51 fetching corpus: 4400, signal 171924/235609 (executing program)
2025/11/15 12:05:51 fetching corpus: 4450, signal 172444/236514 (executing program)
2025/11/15 12:05:51 fetching corpus: 4500, signal 172908/237389 (executing program)
2025/11/15 12:05:51 fetching corpus: 4550, signal 173438/238257 (executing program)
2025/11/15 12:05:51 fetching corpus: 4600, signal 174021/239149 (executing program)
2025/11/15 12:05:51 fetching corpus: 4650, signal 174628/240017 (executing program)
2025/11/15 12:05:52 fetching corpus: 4700, signal 174966/240841 (executing program)
2025/11/15 12:05:52 fetching corpus: 4750, signal 175528/241721 (executing program)
2025/11/15 12:05:52 fetching corpus: 4800, signal 175989/242549 (executing program)
2025/11/15 12:05:52 fetching corpus: 4850, signal 176465/243362 (executing program)
2025/11/15 12:05:52 fetching corpus: 4900, signal 176935/244146 (executing program)
2025/11/15 12:05:52 fetching corpus: 4950, signal 177510/245005 (executing program)
2025/11/15 12:05:52 fetching corpus: 5000, signal 178029/245790 (executing program)
2025/11/15 12:05:52 fetching corpus: 5050, signal 178533/246569 (executing program)
2025/11/15 12:05:52 fetching corpus: 5100, signal 178927/247326 (executing program)
2025/11/15 12:05:52 fetching corpus: 5150, signal 179272/248069 (executing program)
2025/11/15 12:05:53 fetching corpus: 5200, signal 179569/248800 (executing program)
2025/11/15 12:05:53 fetching corpus: 5250, signal 180165/249588 (executing program)
2025/11/15 12:05:53 fetching corpus: 5300, signal 180555/250349 (executing program)
2025/11/15 12:05:53 fetching corpus: 5350, signal 180984/251094 (executing program)
2025/11/15 12:05:53 fetching corpus: 5400, signal 181478/251845 (executing program)
2025/11/15 12:05:53 fetching corpus: 5450, signal 182136/252609 (executing program)
2025/11/15 12:05:53 fetching corpus: 5500, signal 182661/253318 (executing program)
2025/11/15 12:05:53 fetching corpus: 5550, signal 183260/254079 (executing program)
2025/11/15 12:05:53 fetching corpus: 5600, signal 184260/254881 (executing program)
2025/11/15 12:05:53 fetching corpus: 5650, signal 184737/255590 (executing program)
2025/11/15 12:05:53 fetching corpus: 5700, signal 185349/256279 (executing program)
2025/11/15 12:05:54 fetching corpus: 5750, signal 185754/256935 (executing program)
2025/11/15 12:05:54 fetching corpus: 5800, signal 186207/257598 (executing program)
2025/11/15 12:05:54 fetching corpus: 5850, signal 186508/258197 (executing program)
2025/11/15 12:05:54 fetching corpus: 5900, signal 186890/258829 (executing program)
2025/11/15 12:05:54 fetching corpus: 5950, signal 187196/259526 (executing program)
2025/11/15 12:05:54 fetching corpus: 6000, signal 187542/260171 (executing program)
2025/11/15 12:05:54 fetching corpus: 6050, signal 187910/260828 (executing program)
2025/11/15 12:05:54 fetching corpus: 6100, signal 188273/261474 (executing program)
2025/11/15 12:05:54 fetching corpus: 6150, signal 188633/262112 (executing program)
2025/11/15 12:05:54 fetching corpus: 6200, signal 189078/262740 (executing program)
2025/11/15 12:05:54 fetching corpus: 6250, signal 189426/263341 (executing program)
2025/11/15 12:05:55 fetching corpus: 6300, signal 189976/263986 (executing program)
2025/11/15 12:05:55 fetching corpus: 6350, signal 190334/264591 (executing program)
2025/11/15 12:05:55 fetching corpus: 6400, signal 190856/265215 (executing program)
2025/11/15 12:05:55 fetching corpus: 6450, signal 191261/265790 (executing program)
2025/11/15 12:05:55 fetching corpus: 6500, signal 191506/266376 (executing program)
2025/11/15 12:05:55 fetching corpus: 6550, signal 192143/266986 (executing program)
2025/11/15 12:05:55 fetching corpus: 6600, signal 192481/267535 (executing program)
2025/11/15 12:05:55 fetching corpus: 6650, signal 192785/268118 (executing program)
2025/11/15 12:05:55 fetching corpus: 6700, signal 193165/268715 (executing program)
2025/11/15 12:05:55 fetching corpus: 6750, signal 193494/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 6800, signal 193908/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 6850, signal 194214/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 6900, signal 194583/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 6950, signal 194838/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 7000, signal 195161/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 7050, signal 195416/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 7100, signal 195743/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 7150, signal 196161/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 7200, signal 196531/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 7250, signal 196801/268961 (executing program)
2025/11/15 12:05:56 fetching corpus: 7300, signal 197071/268961 (executing program)
2025/11/15 12:05:57 fetching corpus: 7350, signal 197353/268961 (executing program)
2025/11/15 12:05:57 fetching corpus: 7400, signal 197691/268961 (executing program)
2025/11/15 12:05:57 fetching corpus: 7450, signal 198042/268971 (executing program)
2025/11/15 12:05:57 fetching corpus: 7500, signal 198309/268971 (executing program)
2025/11/15 12:05:57 fetching corpus: 7550, signal 198575/268971 (executing program)
2025/11/15 12:05:57 fetching corpus: 7600, signal 198927/268971 (executing program)
2025/11/15 12:05:57 fetching corpus: 7650, signal 199143/268971 (executing program)
2025/11/15 12:05:57 fetching corpus: 7700, signal 199530/268971 (executing program)
2025/11/15 12:05:57 fetching corpus: 7750, signal 200119/268971 (executing program)
2025/11/15 12:05:57 fetching corpus: 7800, signal 200369/268971 (executing program)
2025/11/15 12:05:57 fetching corpus: 7850, signal 200631/268971 (executing program)
2025/11/15 12:05:58 fetching corpus: 7900, signal 200995/268971 (executing program)
2025/11/15 12:05:58 fetching corpus: 7950, signal 201329/268971 (executing program)
2025/11/15 12:05:58 fetching corpus: 8000, signal 201609/268971 (executing program)
2025/11/15 12:05:58 fetching corpus: 8050, signal 202054/268971 (executing program)
2025/11/15 12:05:58 fetching corpus: 8100, signal 202330/268981 (executing program)
2025/11/15 12:05:58 fetching corpus: 8150, signal 202558/268981 (executing program)
2025/11/15 12:05:58 fetching corpus: 8200, signal 202832/268981 (executing program)
2025/11/15 12:05:58 fetching corpus: 8250, signal 203086/268982 (executing program)
2025/11/15 12:05:58 fetching corpus: 8300, signal 203502/268982 (executing program)
2025/11/15 12:05:58 fetching corpus: 8350, signal 203911/268982 (executing program)
2025/11/15 12:05:59 fetching corpus: 8400, signal 204253/268982 (executing program)
2025/11/15 12:05:59 fetching corpus: 8450, signal 204429/268982 (executing program)
2025/11/15 12:05:59 fetching corpus: 8500, signal 204654/268982 (executing program)
2025/11/15 12:05:59 fetching corpus: 8550, signal 204930/268982 (executing program)
2025/11/15 12:05:59 fetching corpus: 8600, signal 205239/268982 (executing program)
2025/11/15 12:05:59 fetching corpus: 8650, signal 205610/268982 (executing program)
2025/11/15 12:05:59 fetching corpus: 8700, signal 205930/268982 (executing program)
2025/11/15 12:05:59 fetching corpus: 8750, signal 206296/268982 (executing program)
2025/11/15 12:05:59 fetching corpus: 8800, signal 206696/268982 (executing program)
2025/11/15 12:05:59 fetching corpus: 8850, signal 206994/268982 (executing program)
2025/11/15 12:06:00 fetching corpus: 8900, signal 207399/268983 (executing program)
2025/11/15 12:06:00 fetching corpus: 8950, signal 207664/268983 (executing program)
2025/11/15 12:06:00 fetching corpus: 9000, signal 207980/268983 (executing program)
2025/11/15 12:06:00 fetching corpus: 9050, signal 208266/268983 (executing program)
2025/11/15 12:06:00 fetching corpus: 9100, signal 208518/268983 (executing program)
2025/11/15 12:06:00 fetching corpus: 9150, signal 208794/268983 (executing program)
2025/11/15 12:06:00 fetching corpus: 9200, signal 209165/268983 (executing program)
2025/11/15 12:06:00 fetching corpus: 9250, signal 209413/268983 (executing program)
2025/11/15 12:06:00 fetching corpus: 9300, signal 209629/268984 (executing program)
2025/11/15 12:06:01 fetching corpus: 9350, signal 209979/268984 (executing program)
2025/11/15 12:06:01 fetching corpus: 9400, signal 210223/268984 (executing program)
2025/11/15 12:06:01 fetching corpus: 9450, signal 210792/268984 (executing program)
2025/11/15 12:06:01 fetching corpus: 9500, signal 211020/268984 (executing program)
2025/11/15 12:06:01 fetching corpus: 9550, signal 211238/268984 (executing program)
2025/11/15 12:06:01 fetching corpus: 9600, signal 211464/268984 (executing program)
2025/11/15 12:06:01 fetching corpus: 9650, signal 211635/268984 (executing program)
2025/11/15 12:06:01 fetching corpus: 9700, signal 211867/268984 (executing program)
2025/11/15 12:06:01 fetching corpus: 9750, signal 212867/268987 (executing program)
2025/11/15 12:06:01 fetching corpus: 9800, signal 213219/268990 (executing program)
2025/11/15 12:06:02 fetching corpus: 9850, signal 213453/268990 (executing program)
2025/11/15 12:06:02 fetching corpus: 9900, signal 213727/268990 (executing program)
2025/11/15 12:06:02 fetching corpus: 9950, signal 214051/268990 (executing program)
2025/11/15 12:06:02 fetching corpus: 10000, signal 214660/268990 (executing program)
2025/11/15 12:06:02 fetching corpus: 10050, signal 214975/268991 (executing program)
2025/11/15 12:06:02 fetching corpus: 10100, signal 215288/268991 (executing program)
2025/11/15 12:06:02 fetching corpus: 10150, signal 215584/268991 (executing program)
2025/11/15 12:06:02 fetching corpus: 10200, signal 215817/268991 (executing program)
2025/11/15 12:06:02 fetching corpus: 10250, signal 215977/268991 (executing program)
2025/11/15 12:06:03 fetching corpus: 10300, signal 216271/268991 (executing program)
2025/11/15 12:06:03 fetching corpus: 10350, signal 216607/268991 (executing program)
2025/11/15 12:06:03 fetching corpus: 10400, signal 216930/268991 (executing program)
2025/11/15 12:06:03 fetching corpus: 10450, signal 217229/268991 (executing program)
2025/11/15 12:06:03 fetching corpus: 10500, signal 217549/268991 (executing program)
2025/11/15 12:06:03 fetching corpus: 10550, signal 217831/268993 (executing program)
2025/11/15 12:06:03 fetching corpus: 10600, signal 218007/268993 (executing program)
2025/11/15 12:06:03 fetching corpus: 10650, signal 218250/268993 (executing program)
2025/11/15 12:06:03 fetching corpus: 10700, signal 218480/268993 (executing program)
2025/11/15 12:06:03 fetching corpus: 10750, signal 218754/268993 (executing program)
2025/11/15 12:06:04 fetching corpus: 10800, signal 219112/268993 (executing program)
2025/11/15 12:06:04 fetching corpus: 10850, signal 219375/268995 (executing program)
2025/11/15 12:06:04 fetching corpus: 10900, signal 219669/268995 (executing program)
2025/11/15 12:06:04 fetching corpus: 10950, signal 219898/268995 (executing program)
2025/11/15 12:06:04 fetching corpus: 11000, signal 220160/268995 (executing program)
2025/11/15 12:06:04 fetching corpus: 11050, signal 220399/268995 (executing program)
2025/11/15 12:06:04 fetching corpus: 11100, signal 220652/268995 (executing program)
2025/11/15 12:06:04 fetching corpus: 11150, signal 220853/268995 (executing program)
2025/11/15 12:06:04 fetching corpus: 11200, signal 221072/268995 (executing program)
2025/11/15 12:06:04 fetching corpus: 11250, signal 221248/268995 (executing program)
2025/11/15 12:06:04 fetching corpus: 11300, signal 221520/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11350, signal 221796/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11400, signal 222101/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11450, signal 222280/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11500, signal 222526/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11550, signal 222733/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11600, signal 223031/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11650, signal 223205/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11700, signal 223413/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11750, signal 223661/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11800, signal 223857/268995 (executing program)
2025/11/15 12:06:05 fetching corpus: 11850, signal 224028/268995 (executing program)
2025/11/15 12:06:06 fetching corpus: 11900, signal 224241/268995 (executing program)
2025/11/15 12:06:06 fetching corpus: 11950, signal 224427/268995 (executing program)
2025/11/15 12:06:06 fetching corpus: 12000, signal 224632/268995 (executing program)
2025/11/15 12:06:06 fetching corpus: 12050, signal 224858/268995 (executing program)
2025/11/15 12:06:06 fetching corpus: 12100, signal 225036/268995 (executing program)
2025/11/15 12:06:06 fetching corpus: 12150, signal 225212/268996 (executing program)
2025/11/15 12:06:06 fetching corpus: 12200, signal 225583/268996 (executing program)
2025/11/15 12:06:06 fetching corpus: 12250, signal 225737/268996 (executing program)
2025/11/15 12:06:06 fetching corpus: 12300, signal 226119/268996 (executing program)
2025/11/15 12:06:06 fetching corpus: 12350, signal 226322/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12400, signal 226552/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12450, signal 226789/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12500, signal 226959/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12550, signal 227135/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12600, signal 227306/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12650, signal 227467/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12700, signal 227755/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12750, signal 227923/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12800, signal 228130/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12850, signal 228332/268996 (executing program)
2025/11/15 12:06:07 fetching corpus: 12900, signal 228551/268996 (executing program)
2025/11/15 12:06:08 fetching corpus: 12950, signal 228698/268996 (executing program)
2025/11/15 12:06:08 fetching corpus: 13000, signal 228933/268996 (executing program)
2025/11/15 12:06:08 fetching corpus: 13050, signal 229212/268996 (executing program)
2025/11/15 12:06:08 fetching corpus: 13100, signal 229521/268996 (executing program)
2025/11/15 12:06:08 fetching corpus: 13150, signal 229744/268996 (executing program)
2025/11/15 12:06:08 fetching corpus: 13200, signal 230028/268996 (executing program)
2025/11/15 12:06:08 fetching corpus: 13250, signal 230242/268996 (executing program)
2025/11/15 12:06:08 fetching corpus: 13300, signal 230430/268996 (executing program)
2025/11/15 12:06:08 fetching corpus: 13350, signal 230685/268996 (executing program)
2025/11/15 12:06:08 fetching corpus: 13400, signal 230891/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13450, signal 231138/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13500, signal 231299/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13550, signal 231464/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13600, signal 231635/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13650, signal 231828/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13700, signal 231979/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13750, signal 232122/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13800, signal 232362/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13850, signal 232644/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13900, signal 232890/268996 (executing program)
2025/11/15 12:06:09 fetching corpus: 13950, signal 233078/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14000, signal 233187/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14050, signal 233360/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14100, signal 233542/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14150, signal 233765/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14200, signal 233983/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14250, signal 234221/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14300, signal 234373/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14350, signal 234572/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14400, signal 234731/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14450, signal 234938/268996 (executing program)
2025/11/15 12:06:10 fetching corpus: 14500, signal 235123/268996 (executing program)
2025/11/15 12:06:11 fetching corpus: 14550, signal 235314/268996 (executing program)
2025/11/15 12:06:11 fetching corpus: 14600, signal 235492/268996 (executing program)
2025/11/15 12:06:11 fetching corpus: 14650, signal 235695/268996 (executing program)
2025/11/15 12:06:11 fetching corpus: 14700, signal 235870/268996 (executing program)
2025/11/15 12:06:11 fetching corpus: 14750, signal 236051/268996 (executing program)
2025/11/15 12:06:11 fetching corpus: 14800, signal 236189/268996 (executing program)
2025/11/15 12:06:11 fetching corpus: 14850, signal 236367/268996 (executing program)
2025/11/15 12:06:11 fetching corpus: 14900, signal 236526/268996 (executing program)
2025/11/15 12:06:11 fetching corpus: 14950, signal 236670/268996 (executing program)
2025/11/15 12:06:11 fetching corpus: 15000, signal 236836/268996 (executing program)
2025/11/15 12:06:12 fetching corpus: 15050, signal 237007/268996 (executing program)
2025/11/15 12:06:12 fetching corpus: 15100, signal 237197/268996 (executing program)
2025/11/15 12:06:12 fetching corpus: 15150, signal 237403/268996 (executing program)
2025/11/15 12:06:12 fetching corpus: 15200, signal 237558/268996 (executing program)
2025/11/15 12:06:12 fetching corpus: 15250, signal 237760/268996 (executing program)
2025/11/15 12:06:12 fetching corpus: 15300, signal 238034/268996 (executing program)
2025/11/15 12:06:12 fetching corpus: 15350, signal 238175/268996 (executing program)
2025/11/15 12:06:12 fetching corpus: 15400, signal 238337/268996 (executing program)
2025/11/15 12:06:12 fetching corpus: 15450, signal 238511/268996 (executing program)
2025/11/15 12:06:13 fetching corpus: 15500, signal 238692/268996 (executing program)
2025/11/15 12:06:13 fetching corpus: 15550, signal 238875/268996 (executing program)
2025/11/15 12:06:13 fetching corpus: 15600, signal 239054/268996 (executing program)
2025/11/15 12:06:13 fetching corpus: 15650, signal 239210/268996 (executing program)
2025/11/15 12:06:13 fetching corpus: 15700, signal 239409/268996 (executing program)
2025/11/15 12:06:13 fetching corpus: 15750, signal 239596/268999 (executing program)
2025/11/15 12:06:13 fetching corpus: 15775, signal 239667/268999 (executing program)
2025/11/15 12:06:13 fetching corpus: 15775, signal 239667/268999 (executing program)
2025/11/15 12:06:15 starting 8 fuzzer processes
12:06:15 executing program 0:
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, &(0x7f0000000000)=""/97, &(0x7f0000000080)=0x61)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, r0, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY_ANTENNA_TX={0x8, 0x69, 0x2}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x8}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8, 0x40, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008080}, 0x2000c000)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000200)={[0x20]}, 0x8)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r1, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r0, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x200, 0x5f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r1, 0x89fa, &(0x7f0000000440)={'sit0\x00', &(0x7f00000003c0)={'sit0\x00', <r2=>0x0, 0x4, 0x20, 0x6, 0x8, 0x44, @loopback, @private2={0xfc, 0x2, '\x00', 0x1}, 0x80, 0x8000, 0x9, 0x5}})
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000006c0)={&(0x7f0000000480)=@getsadinfo={0x220, 0x23, 0x8, 0x70bd2c, 0x25dfdbfe, 0x0, [@migrate={0x50, 0x11, [{@in=@multicast1, @in=@local, @in=@dev={0xac, 0x14, 0x14, 0x22}, @in=@loopback, 0x33, 0x4, 0x0, 0x3506, 0x2, 0x2}]}, @offload={0xc, 0x1c, {r2, 0x1}}, @replay_thresh={0x8, 0xb, 0x1}, @sec_ctx={0xef, 0x8, {0xeb, 0x8, 0x1, 0x3f, 0xe3, "3e899ce7a27bfbd9f31115b5db61b1f07baf874673c58bc8d1e7b8003ef26ddc279bc017bedcd06ba0b804ff298c156074aa73bd2e1cb57f78edc432f6a706fb8a545073879845b5b9715e0a753b1fe9e9b9f0a43b5d102fe893eafebe71cf5a574050f447c37d3bc90bf8c4837dc75a0c9805956257aca4bc7beeecfa2f48345d5ef5e0a9a4dca7956e60f7ee995261b2827269ab6948b569ba6ddd9a9008b3a371e18650046010e9f082dc26cd1d461ee2a97b6bb8a2de1d3017cc31aa279fad493b7d7f8c8ce1c15b2e6d2b77f7a271bd5c7ce4a47393d40b42365e67cdc3269d29"}}, @policy_type={0xa}, @policy={0xac, 0x7, {{@in=@multicast1, @in6=@local, 0x4e24, 0x0, 0x4e23, 0x3, 0xa, 0x20, 0xa0, 0x1d}, {0x2, 0x1, 0x1, 0x6, 0x400, 0xa453, 0x2, 0x8000}, {0x200, 0x9, 0x1bb, 0x1}, 0x27a, 0x0, 0x1, 0x1}}]}, 0x220}, 0x1, 0x0, 0x0, 0x4004054}, 0x52)
ioctl$sock_bt_hci(r1, 0x400448e2, &(0x7f0000000740)="47402aa2397d6180e165cb7c7aeb30c43acdb59124980270177fda061e049408a21c1b5f41cf50dc9301cfb5dad62a359246b21dc0e422f0951cba165caf74f422f507d4e1ea7442b31e73da82f51caf5dbd2f4f623d27230709a6bf249e24477a938e1dafa787a983f01f21306819b67cb10127c2768c4f7c1eb2f7cb45486efe3327fec27d5981f782c57fdf44")
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000cc0)={<r4=>r3, 0x200, 0xfffffffffffffff8, 0x100000001})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000000e40)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000d40)={0xa8, 0x0, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x1}, 0x40081)
r5 = accept4(r4, &(0x7f0000000e80)=@nl=@unspec, &(0x7f0000000f00)=0x80, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000f40)={'wlan1\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), r1)
r8 = memfd_secret(0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r8, &(0x7f0000001080)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001040)={&(0x7f0000001000)={0x38, r7, 0x400, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x0, 0x2f}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x4880}, 0x28000850)
getsockopt$IP_VS_SO_GET_TIMEOUT(r4, 0x0, 0x486, &(0x7f00000010c0), &(0x7f0000001100)=0xc)
r9 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001140), 0x220200, 0x0)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f00000011c0), r1)
sendmsg$DEVLINK_CMD_SB_GET(r9, &(0x7f00000012c0)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001280)={&(0x7f0000001200)={0x5c, r10, 0x1, 0x70bd25, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xfffff800}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000050)

12:06:15 executing program 2:
connect$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e)
connect$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
connect$unix(r0, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)
statfs(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)=""/107)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r1=>r0, {0x4}}, './file0\x00'})
recvmsg$unix(r1, &(0x7f0000000480)={&(0x7f0000000380)=@abs, 0x6e, &(0x7f0000000440)=[{&(0x7f0000000400)=""/8, 0x8}], 0x1}, 0x42)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r2=>r0, {0x2}}, './file0\x00'})
recvmsg$unix(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000500)=""/215, 0xd7}, {&(0x7f0000000600)=""/232, 0xe8}], 0x2, &(0x7f0000000740)=[@cred={{0x1c, 0x1, 0x2, {<r3=>0x0, <r4=>0x0, <r5=>0x0}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r6=>0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, <r7=>0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r8=>0x0, 0x0, <r9=>0x0}}}], 0x78}, 0x2042)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000900)={0x14, 0x0, &(0x7f0000000800)=[@release={0x40046306, 0x1}, @exit_looper, @decrefs={0x40046307, 0x1}], 0x82, 0x0, &(0x7f0000000840)="fdc1a0b9df34210f97ec226b779b982df5dc4bf08420b918e59d183643f93357a4fcb2950432b387a606da43917b88febeb12a3d9a270dafc36f7232a289609f9b1fbb56ec91b7fcc404a2a32d34c286b27e297f777837f508c31c5fa8abb33df8154934553da3623839002755b471f7bc0b8d452270809e839692b59bfd76d9f95c"})
r10 = creat(&(0x7f0000000940)='./file0\x00', 0x18)
recvmsg$unix(r7, &(0x7f0000000d00)={&(0x7f0000000980), 0x6e, &(0x7f0000000c80)=[{&(0x7f0000000a00)=""/157, 0x9d}, {&(0x7f0000000ac0)=""/205, 0xcd}, {&(0x7f0000000bc0)=""/66, 0x42}, {&(0x7f0000000c40)=""/30, 0x1e}], 0x4, &(0x7f0000000cc0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r11=>0x0}}}, @rights={{0x1c, 0x1, 0x1, [<r12=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}, 0x40000000)
r13 = getpgrp(r8)
getsockopt$sock_cred(r12, 0x1, 0x11, &(0x7f0000000e80)={0x0, 0x0, <r14=>0x0}, &(0x7f0000000ec0)=0xc)
r15 = creat(&(0x7f0000000f00)='./file0\x00', 0x100)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000f40)={{{@in=@multicast1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r16=>0x0}}, {{@in6=@mcast1}, 0x0, @in=@private}}, &(0x7f0000001040)=0xe8)
getgroups(0x8, &(0x7f0000001080)=[r5, r6, r11, 0xee00, r5, r5, r9, <r17=>r11])
sendmmsg$unix(r2, &(0x7f0000001180)=[{{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000d40)="401bf28f6f42ba418c379bee6055f895fcaf895e5bc7d7860c8b433da016aba4528e4a97518f6897f5390b0e8f5bba36c9fccb9b3c820e8fa4f82f53e4274936cd1e03ecc36fac46d71f09dc61717f539c111c08d357f50fa7555d4154cdd679f29c7457f34ed878dbbbe4490d3aed960251c12e1b2303b7dd421234b9811a7f38bd6e0cc1c7fb89ab9f27c464ac85bf30e148dc54501dea5523a3670d9a8a058905f2d993cd5dbc9e3c8451533e398a9697b3f5b91d13e9e3034f78f867bebe9687f894574fc04b82c12e5b138cd798bc59938a334c3b55e86149ae2cba665570b6083dbb0b4adc96ae060aed3ee67ea4d57ed5bafc53f64d07d7", 0xfb}], 0x1, &(0x7f00000010c0)=[@rights={{0x14, 0x1, 0x1, [r10]}}, @cred={{0x1c, 0x1, 0x2, {r13, 0x0, r14}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r6}}}, @rights={{0x14, 0x1, 0x1, [r15]}}, @cred={{0x1c, 0x1, 0x2, {r8, r16, r17}}}], 0x90}}], 0x1, 0x40005)
r18 = eventfd(0x5)
close_range(r10, r18, 0x2)

12:06:15 executing program 1:
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @auto=[0x35, 0x34, 0x35, 0x34, 0x62, 0x34, 0x30, 0x61, 0x35, 0x33, 0x63, 0x65, 0x38, 0x36, 0x50, 0x33]}, &(0x7f0000000080)={0x0, "9258366b219d61c79234228ede313347d8829043aceb0f54a6312f0551d0de6744091f98810d0d5c33fa022ba9efa754e23cf2a93f6d8f74bdfea4c27719b0ab", 0x2a}, 0x48, 0x0)
r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x1e, 0x0, r0, r1, 0x0)
r2 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, r0)
keyctl$reject(0x13, r2, 0x5, 0x0, r2)
keyctl$setperm(0x5, r0, 0xc0000)
r3 = add_key$fscrypt_v1(&(0x7f0000000200), &(0x7f0000000240)={'fscrypt:', @desc2}, &(0x7f0000000280)={0x0, "3e9df3aefaa59d48bdce627a6422a1ea221d03160c0a6ced0975821c7af40e4baa446d4fd431ff51e0fbbacc1b71a038fba13273f5b2c51cffaf348a372675f7", 0x2e}, 0x48, r1)
keyctl$get_security(0x11, r3, &(0x7f0000000300)=""/146, 0x92)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f00000003c0)='pkcs7_test\x00', 0x0)
add_key$keyring(&(0x7f0000000400), &(0x7f0000000440)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
r4 = add_key$fscrypt_v1(&(0x7f0000000480), &(0x7f00000004c0)={'fscrypt:', @auto=[0x31, 0x31, 0x32, 0x61, 0x55, 0x36, 0x65, 0x63, 0x66, 0x61, 0x30, 0x30, 0x31, 0x62, 0x6b, 0x31]}, &(0x7f0000000500)={0x0, "8a6fc809069fcc4089133c90d8d6366c2bbb04ffa74e950678ac0a20f2033e42a97b00b203c6f24e1549184787913d59b98f928918cbbc586d6dc5fe270225e1", 0x1d}, 0x48, 0xfffffffffffffffb)
r5 = add_key$keyring(&(0x7f0000000580), &(0x7f00000005c0)={'syz', 0x3}, 0x0, 0x0, r3)
keyctl$KEYCTL_MOVE(0x1e, r4, r2, r5, 0x0)
keyctl$link(0x8, r0, r1)
add_key$keyring(&(0x7f0000000600), &(0x7f0000000640)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000005880)=[{{&(0x7f0000000680)=@abs, 0x6e, &(0x7f0000001bc0)=[{&(0x7f0000000700)=""/70, 0x46}, {&(0x7f0000000780)=""/190, 0xbe}, {&(0x7f0000000840)=""/210, 0xd2}, {&(0x7f0000000940)=""/156, 0x9c}, {&(0x7f0000000a00)=""/137, 0x89}, {&(0x7f0000000ac0)=""/74, 0x4a}, {&(0x7f0000000b40)=""/36, 0x24}, {&(0x7f0000000b80)=""/4096, 0x1000}, {&(0x7f0000001b80)=""/29, 0x1d}], 0x9, &(0x7f0000001c80)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x128}}, {{&(0x7f0000001dc0)=@abs, 0x6e, &(0x7f0000002040)=[{&(0x7f0000001e40)=""/243, 0xf3}, {&(0x7f0000001f40)=""/250, 0xfa}], 0x2}}, {{&(0x7f0000002080), 0x6e, &(0x7f0000002400)=[{&(0x7f0000002100)=""/68, 0x44}, {&(0x7f0000002180)=""/181, 0xb5}, {&(0x7f0000002240)=""/61, 0x3d}, {&(0x7f0000002280)=""/99, 0x63}, {&(0x7f0000002300)=""/46, 0x2e}, {&(0x7f0000002340)=""/164, 0xa4}], 0x6, &(0x7f0000002480)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r6=>0x0}}}], 0x40}}, {{&(0x7f00000024c0)=@abs, 0x6e, &(0x7f0000004a40)=[{&(0x7f0000002540)=""/29, 0x1d}, {&(0x7f0000002580)=""/103, 0x67}, {&(0x7f0000002600)=""/69, 0x45}, {&(0x7f0000002680)=""/244, 0xf4}, {&(0x7f0000002780)=""/153, 0x99}, {&(0x7f0000002840)=""/4096, 0x1000}, {&(0x7f0000003840)=""/215, 0xd7}, {&(0x7f0000003940)=""/109, 0x6d}, {&(0x7f00000039c0)=""/4096, 0x1000}, {&(0x7f00000049c0)=""/101, 0x65}], 0xa, &(0x7f0000004b00)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x88}}, {{&(0x7f0000004bc0)=@abs, 0x6e, &(0x7f0000004e40)=[{&(0x7f0000004c40)=""/196, 0xc4}, {&(0x7f0000004d40)=""/249, 0xf9}], 0x2, &(0x7f0000004e80)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}}, {{&(0x7f0000004ec0)=@abs, 0x6e, &(0x7f0000005500)=[{&(0x7f0000004f40)=""/103, 0x67}, {&(0x7f0000004fc0)=""/122, 0x7a}, {&(0x7f0000005040)=""/186, 0xba}, {&(0x7f0000005100)=""/236, 0xec}, {&(0x7f0000005200)=""/232, 0xe8}, {&(0x7f0000005300)=""/87, 0x57}, {&(0x7f0000005380)=""/53, 0x35}, {&(0x7f00000053c0)=""/140, 0x8c}, {&(0x7f0000005480)=""/82, 0x52}], 0x9, &(0x7f00000055c0)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}, {{&(0x7f0000005640)=@abs, 0x6e, &(0x7f0000005800)=[{&(0x7f00000056c0)=""/151, 0x97}, {&(0x7f0000005780)=""/116, 0x74}], 0x2, &(0x7f0000005840)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38}}], 0x7, 0x2121, &(0x7f0000005a40)={0x0, 0x989680})
stat(&(0x7f0000005a80)='./file0\x00', &(0x7f0000005ac0)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
keyctl$chown(0x4, r0, r6, r7)
add_key$fscrypt_v1(&(0x7f0000005b40), &(0x7f0000005b80)={'fscrypt:', @desc2}, &(0x7f0000005bc0)={0x0, "8bdd664bc11efdaf0518309b1644495b418f86b74b1391b3f4c668a73a917e322b896303e0a97c89225693f1eadf88c5778d19025c3a52b4070cf762cce34acd", 0x1a}, 0x48, r4)
stat(&(0x7f0000005c40)='./file0\x00', &(0x7f0000005c80))

12:06:15 executing program 3:
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000000))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$inet6(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="ae1d", 0x2}], 0x1, &(0x7f00000000c0)=[@dstopts={{0x20, 0x29, 0x37, {0xff, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x6}]}}}, @rthdr={{0x48, 0x29, 0x39, {0x3c, 0x6, 0x0, 0x6, 0x0, [@mcast1, @mcast2, @dev={0xfe, 0x80, '\x00', 0xd}]}}}], 0x68}, 0x8000)
r1 = openat(0xffffffffffffffff, &(0x7f0000002640)='./file0\x00', 0x200403, 0x46)
setsockopt$inet_tcp_int(r1, 0x6, 0x1d, &(0x7f0000002680), 0x4)
r2 = syz_io_uring_complete(0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x1d, &(0x7f00000026c0)=0x9, 0x4)
recvfrom(0xffffffffffffffff, &(0x7f0000002700)=""/178, 0xb2, 0x42, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f00000027c0)={<r3=>r2, 0x10001, 0x2, 0x4})
sendmsg$DEVLINK_CMD_RATE_GET(r3, &(0x7f0000002a40)={&(0x7f0000002800)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000002a00)={&(0x7f0000002840)={0x1a8, 0x0, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xf7, 0xa8, @random="84ad83c388a8877b5fd48f5ea7b513df6760dc48fd4ab078ed0f940f201207b3b780669243c4c029b674f6dbb78f30fdf59a1e5cd450f83da0b1e5f7fa2b04f3d4820622e40acdac1c884b079a58511018ba319d106373556ad831077a52cf1488b24c4b665eabf2e0e197aade2eb9ad52c48abe06a40bf9730f0239e385e6ed3518e1e6a3e43b50ba24826bfcd41a5dddfdc70b98e956763658b6343c001d47ee7962b8f5271817aa40520d5e77399662cabd83e6606cecf2f2d8551aaa3587655254025d21a5542cdd62f752136a5a89865cc73d9f6a3afff9c9f4a90252308f4cd5a0e14e4508b02f80f73b3adde1c71e7c"}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @handle=@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_PORT_INDEX={0x8}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @handle=@pci={{0x8}, {0x11}}, @handle=@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x2}]}, 0x1a8}, 0x1, 0x0, 0x0, 0x80}, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000002ac0), r2)
sendmsg$DEVLINK_CMD_PORT_GET(r3, &(0x7f0000002bc0)={&(0x7f0000002a80)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000002b80)={&(0x7f0000002b00)={0x60, r4, 0x300, 0x70bd2a, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}]}, 0x60}}, 0x800)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r1, &(0x7f0000002d40)={&(0x7f0000002c00)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000002d00)={&(0x7f0000002c40)={0xa4, 0x0, 0x200, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x10000, 0x7a}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_SSID={0x20, 0x34, @random="e1629b2e0e41a33b7fa34766f8be83d83d826bd8bd165aeca974313d"}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x3}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x400}, @NL80211_ATTR_IE={0x1b, 0x2a, [@ssid={0x0, 0x6, @default_ibss_ssid}, @supported_rates={0x1, 0x5, [{0x12, 0x1}, {0x1}, {0x12}, {0x16}, {0x6, 0x1}]}, @supported_rates={0x1, 0x6, [{0xc, 0x1}, {0x30, 0x1}, {0x4}, {0x4}, {0x6c}, {0x12, 0x1}]}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x24000040}, 0x80)
creat(&(0x7f0000002d80)='./file0\x00', 0x80)
r5 = openat$incfs(r3, &(0x7f0000003080)='.pending_reads\x00', 0x108000, 0x40)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r5, 0x89f4, &(0x7f0000003140)={'ip6_vti0\x00', &(0x7f00000030c0)={'ip6tnl0\x00', <r6=>0x0, 0x4, 0x2, 0xff, 0x2, 0x8, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x1, 0x700, 0x2fe0883f, 0x4}})
fspick(r3, &(0x7f0000003180)='./file0\x00', 0x0)
r7 = signalfd(r2, &(0x7f00000031c0)={[0xffffffff]}, 0x8)
ioctl$sock_SIOCOUTQNSD(r7, 0x894b, &(0x7f0000003200))
ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000006d00)={@mcast2, @dev={0xfe, 0x80, '\x00', 0x10}, @empty, 0x9, 0x8, 0x6, 0x500, 0x8000, 0x100, r6})

12:06:15 executing program 4:
write$P9_RXATTRCREATE(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x21, 0x1}, 0x7)
r0 = syz_open_dev$vcsu(&(0x7f0000000040), 0x9, 0x20000)
write$P9_RCREATE(r0, &(0x7f0000000080)={0x18, 0x73, 0x2, {{0x20, 0x2, 0x7}}}, 0x18)
pread64(0xffffffffffffffff, &(0x7f00000000c0)=""/95, 0x5f, 0x8)
ioctl$MON_IOCG_STATS(r0, 0x80089203, &(0x7f0000000140))
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000180)={<r1=>r0, 0xfff, 0x5, 0x100})
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f00000001c0)={0x7cd0, 0xfffffffffffffffe, 0x2, 0x6, 0x4, [{0x2e, 0x1, 0x46, '\x00', 0x202}, {0x525, 0xdba4, 0x4, '\x00', 0x2388}, {0x4, 0x9, 0xffffffff}, {0x0, 0x7, 0x4d7, '\x00', 0x105}]})
flistxattr(r0, &(0x7f00000002c0), 0x0)
ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000000300)=0x7f)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r0)
sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, r2, 0x10, 0x70bd29, 0x25dfdbfe, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8011}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000480)={{0x1, 0x1, 0x18, <r3=>r0, {0x3}}, './file0\x00'})
copy_file_range(r1, 0x0, r3, &(0x7f00000004c0)=0x7, 0x3, 0x0)
r4 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
ioctl$AUTOFS_IOC_SETTIMEOUT(r4, 0x80049367, &(0x7f0000000500))
connect(r4, &(0x7f0000000540)=@phonet={0x23, 0x9, 0x3, 0x4}, 0x80)
r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000005c0), 0x1, 0x0)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r5, 0x8008f512, &(0x7f0000000600))
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000640), &(0x7f0000000680), 0x2, 0x2)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r1, 0x8008f511, &(0x7f00000006c0))

12:06:15 executing program 5:
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f0000000000))
ioctl$TIOCL_SCROLLCONSOLE(0xffffffffffffffff, 0x541c, &(0x7f0000000040)={0xd, 0x3})
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f0000000080))
ioctl$TCGETS2(0xffffffffffffffff, 0x802c542a, &(0x7f00000000c0))
ioctl$TIOCL_SETVESABLANK(0xffffffffffffffff, 0x541c, &(0x7f0000000100))
r0 = memfd_secret(0x0)
ioctl$TIOCGDEV(r0, 0x80045432, &(0x7f0000000140))
pwrite64(r0, &(0x7f0000000180)="07c4e132f08a179a317709aaabcf3463f0e188d198e4ec8e5911e02fffde7f91563a558a4a99294947d676d32a46b6fdbb639f1003cde37d234de2efa4feb946e8cd1003856ecd4d2fd397a7c19fd4c1f49de0fe6b14aafe59661347d5a82371deba0a4152dfd2e5bae5644618f0edd857abeea8d0bba29a6bd12c9cef3d78ce9b03e3bc3ff05ddc", 0x88, 0x8)
ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000240))
ioctl$PIO_FONT(r0, 0x4b61, &(0x7f0000000280)="4e6809307bc3967c0c0921f5fddc9700418f746ee7d87c6a1e8cbdb8801a483a994e59b86496771b525751a0bba1b35be7a30fd676628d36d508b16c240a6dd32c6a760c334cb01c5601503c")
r1 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$TIOCL_PASTESEL(r1, 0x541c, &(0x7f0000000300))
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000340)={0x2, {0x2, 0x2, 0xc8f, 0x8, 0x6, 0x1}})
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000380), 0x1, 0x0)
read(r2, &(0x7f00000003c0)=""/183, 0xb7)
ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000480)={0x81, 0x4, 0x5, 0x7, 0x10, "117e3565f270bcde"})
close_range(r2, r2, 0x2)
r3 = syz_open_dev$vcsu(&(0x7f00000004c0), 0x4, 0x2042)
ioctl$TIOCL_PASTESEL(r3, 0x541c, &(0x7f0000000500))
ioctl$VT_GETMODE(r0, 0x5601, &(0x7f0000000540))

12:06:15 executing program 7:
r0 = memfd_secret(0x80000)
sendmsg$AUDIT_USER(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)={0x108, 0x3ed, 0x300, 0x70bd27, 0x25dfdbff, "3ba35ea469f7abae021559382b7a3029d855b412ccfd17d03cb21b9d36648fa9ea780eadaf1b5d8081d5d24fb78fa2738db88be1eefafb98b2ae49e20709f57a81f51a74b059dd880298fa7e3dae9e8f34b47d15047f17eb337bc5b23879858d47d3931a524bbb4f75a163b16d9140b8e792339358435a9e18e8c59dfe7f6f8c70295c095c04dde6651437498b4668039d89922f0fb76669914a90022097b85101313acf45fc049e141aa8310bd152893b2606b8efe2d6e13dedc855eccbd222b4780b2c0263b5fdb626fec08074b777d7264b825290e97ea32afce277a76368ff33ad3a60fb1ca530fe55d5e527e12438b2fb6338", ["", "", "", "", "", "", ""]}, 0x108}}, 0x20000000)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x80002, 0x0)
sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x20, 0x7, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000010}, 0x4)
sendmsg$AUDIT_TRIM(r1, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x10, 0x3f6, 0x100, 0x70bd28, 0x25dfdbfb, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x20000090}, 0x4810)
fsync(r0)
sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000540)={&(0x7f0000000480)={0xac, 0x0, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x6}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'wlan0\x00'}]}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xfffffff9}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x1}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'gretap0\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x80}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x24008050}, 0x880)
setsockopt$packet_int(r1, 0x107, 0x9, &(0x7f00000005c0)=0x1, 0x4)
ioctl$PTP_PEROUT_REQUEST(0xffffffffffffffff, 0x40383d03, &(0x7f0000000600)={{0x6, 0x5}, {0x7, 0x6}, 0x68ad, 0x1})
r2 = signalfd4(r0, &(0x7f0000000640), 0x8, 0x80000)
sendto$packet(r2, &(0x7f0000000680)="d0de06a802f367b7f8e7f831173b9300aad3d94f09dc6d478db1b2e7ccb7d25b91e798aa132728b8fb755176e13c5890", 0x30, 0x8000, &(0x7f00000006c0)={0x11, 0x3, 0x0, 0x1, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x14)
r3 = syz_io_uring_complete(0x0)
fcntl$getownex(r1, 0x10, &(0x7f0000000740)={0x0, <r4=>0x0})
sendmsg$AUDIT_SET(r3, &(0x7f0000000800)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x38, 0x3e9, 0x100, 0x70bd25, 0x25dfdbff, {0x8, 0x0, 0x2, r4, 0xa787, 0x4, 0x80, 0x4, 0x0, 0x7ff}, ["", "", "", "", "", "", "", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x20008844}, 0x20004000)
sendmsg$AUDIT_MAKE_EQUIV(r3, &(0x7f0000000900)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x72a8ebd7fd741a08}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x28, 0x3f7, 0x100, 0x70bd29, 0x25dfdbff, {0x7, 0x7, './file0', './file0'}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20008840}, 0x1)
sendmsg$BATADV_CMD_TP_METER_CANCEL(r2, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x3c, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x2}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x40}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000810}, 0x40000)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x14, 0x0, 0x4, 0x70bd2b, 0x25dfdbfe}, 0x14}}, 0x4001)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000b80)={'wpan3\x00', <r6=>0x0})
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r5, &(0x7f0000000c80)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000c40)={&(0x7f0000000bc0)={0x60, 0x0, 0x8, 0x70bd2a, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x1}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x60}, 0x1, 0x0, 0x0, 0x800}, 0x4004000)

[   94.748176] audit: type=1400 audit(1763208375.756:7): avc:  denied  { execmem } for  pid=274 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
12:06:15 executing program 6:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r1=>0x0})
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x64, r0, 0x800, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x2, 0x7a}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x59}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x4f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x49}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xc}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3e}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000000}, 0x8001)
r2 = accept4(0xffffffffffffffff, &(0x7f00000001c0)=@generic, &(0x7f0000000240)=0x80, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, r0, 0x1, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x4, 0x30}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x1}, @NL80211_ATTR_USE_RRM={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008040}, 0x4000)
ioctl$sock_inet_SIOCGIFADDR(r2, 0x8915, &(0x7f0000000380)={'vlan0\x00', {0x2, 0x0, @dev}})
getsockopt$inet_mreqn(r2, 0x0, 0x20, &(0x7f0000000400)={@broadcast, @loopback, <r3=>0x0}, &(0x7f0000000440)=0xc)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x50, 0x0, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x80}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @remote}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}]}, 0x50}, 0x1, 0x0, 0x0, 0x4}, 0x10)
fcntl$setstatus(r2, 0x4, 0x2000)
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f0000000640)={&(0x7f0000000580), 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x28, 0x0, 0x0, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x10000, 0xe}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), r2)
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000900)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000008c0)={&(0x7f0000000700)={0x184, r0, 0x500, 0x70bd29, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x7f, 0x2e}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "cea3b05b960a97c6d3e42fc3509816496c86363772941f30"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "5ba6266e13fd46614efc07c4f18e11dde5e0efa87f438fdc"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "a44617f99d866ccc17ac38c964086c5f64fa8b05749a0224"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}], @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xc}, @NL80211_ATTR_4ADDR={0x5}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x4}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x28, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "e46043d0d45d3cafe8c284274012bd6d7c21053d3e41b24f"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}], @NL80211_ATTR_MESH_ID={0xa}]}, 0x184}, 0x1, 0x0, 0x0, 0x8100}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000940)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, <r4=>0x0})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000b40)={{r2}, r4, 0xc, @unused=[0x2584b1bf, 0x5, 0x0, 0x81], @name="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"})
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r2, &(0x7f0000001dc0)={&(0x7f0000001b40)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001d80)={&(0x7f0000001b80)={0x200, 0x0, 0x200, 0x70bd2d, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x80}, {0x6, 0x16, 0x1}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x6}, {0x6, 0x16, 0x658}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x7ff}, {0x6, 0x16, 0x914}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8}, {0x6, 0x16, 0x1}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8}, {0x6, 0x16, 0x7}, {0x5, 0x12, 0x1}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x8}, {0x6, 0x16, 0x3}, {0x5, 0x12, 0x1}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x5}, {0x6, 0x16, 0x8}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x4}, {0x6, 0x16, 0x3c0}, {0x5}}]}, 0x200}, 0x1, 0x0, 0x0, 0x20008000}, 0x800)
copy_file_range(r2, &(0x7f0000001e00)=0x80000000, 0xffffffffffffffff, &(0x7f0000001e40)=0x1, 0x800, 0x0)
r5 = syz_mount_image$nfs(&(0x7f0000001e80), &(0x7f0000001ec0)='./file0\x00', 0x2, 0x6, &(0x7f0000002340)=[{&(0x7f0000001f00)="e70b5a7ce6d668f82fbb321b029837a8ca61b939781c4108abc23599f616fdc2d470ef56b8cc4541efe7a01bc93312eb58cdd1a6d2ef3f8828288592728f4f6046f8985a40733201f70880f5e867b8525da88cd3a8b1deb5193fc5b3313bd65a648501d5823c7058e8eec267689b3841855360c3c0b308878db51ec3ee54811ea8", 0x81, 0xffff}, {&(0x7f0000001fc0)="d8a10bab6c45951a060859fdf0d2d4ffc74065e008fcebc726f1b5f27017cd90e70535aac05340094532d8b9d15412436e99f5c700798b496c26b970486950dfcad72a2be1e9393a19a564d83b1b8e3982f1c4", 0x53, 0x10000}, {&(0x7f0000002040)="28528509121e5511dfbf37a4d108eb0e20d322f29d2aedf25b04aba5b752ff2a1a3b4d040237827adff0e256d55c954af117b0e5fb3214e404253edb656d0c0e64347531c5e1f93639df48799eedb9dcd8d14724e4c64219d5b16b1b46199e00217e615e83224ce9c4a1018034d22470b301ed6f3bc2644373f1d9a137c8cda1f13f60ca2ecff82bda34e603847d1dada20b527249815afdfd699e8bfbb116688dad7434321eca491f395dc5bfd2fd607000ce2ce02e1636e2a9cdd8491fd9a589e0d225b84f1dc1bf88194572b3c28c34ca8026ad935f971e85e9304ea518940edd3ac9a9c8b7024fa4bcb2d16201331867a5f327", 0xf5, 0x1000}, {&(0x7f0000002140)="242a78e86d253773923d86180960b24683dad02154fc54746ecdbc6ea9ebba4cd1c6bebf9e2364cfa49e9f22bca24ced3ce43de026cc93ec3258271536474378eb45457b0c0f2c7217f194bfa26a4aa2aa144d603592309b7bd500ab755b66d57c3c5bed32d03b53275c700dc36e77faf655", 0x72, 0x1000}, {&(0x7f00000021c0)="abad5cfc1aa88d68e2bc1f8b3d5b9beb3d5292daafe50ea99d02956325e5f5eeaea4d55a3d4962ee91f2f38e13b56de856377031cda055f0b5d6f9c6a4ad1aa96632f51fff46306267094e22c895ce893f525aabf1d1b75aa22098d9ea8bf31c230d1a1bf4ef32e51cb842", 0x6b, 0xffffffff}, {&(0x7f0000002240)="0f59211b9b93588d971d3821f8d3327236ab7a31b9ba7e94329094a4cbc1fb03e06f14fd4ce834659d549a3972e02f516838f3f29eb23c01891e2f21fd78ef1d9306a21ad0030dbd5a96a4182a6b28c9055d854e8dc0f1a4be171442615050eca7512760d4b58e01f1d9e8028586d65f4497d267d36a47b186ad5b943750476451e39c107edfcffa294583601cb37bc0762411901d45a68be004b4784d0282b9916599a518c8b7529f225fc12a19b800e6be49431ecec8775d5c1fd5362843c31419223436b6d7b9d02c8b1f53717d89d0cec2d352135a1c138e71bcabe667c74470f9324fd74411870b09bf62e089227893c2f7", 0xf4, 0x7}], 0x1c, &(0x7f0000002400)={[{'vlan0\x00'}, {}, {'netdevsim'}, {'^'}], [{@smackfsroot}]})
dup(r5)
fremovexattr(r5, &(0x7f0000002440)=@random={'btrfs.', '}@+#\\\x00'})
setsockopt$bt_hci_HCI_DATA_DIR(r2, 0x0, 0x1, &(0x7f0000002480)=0x1, 0x4)

[   95.878613] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   95.881864] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   95.884863] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   95.888308] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   95.892783] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   95.943643] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   95.944999] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   95.946319] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   95.948867] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   95.951835] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   96.078400] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   96.079451] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   96.083025] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   96.086851] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   96.088284] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   96.089466] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   96.091226] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   96.092749] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   96.096662] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   96.097708] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   96.098300] ==================================================================
[   96.098886] BUG: KASAN: slab-use-after-free in hci_cmd_work+0x66d/0x6d0
[   96.099460] Read of size 2 at addr ffff888009e603f8 by task kworker/u11:5/309
[   96.100028] 
[   96.100173] CPU: 0 UID: 0 PID: 309 Comm: kworker/u11:5 Not tainted 6.18.0-rc5-next-20251114 #1 PREEMPT(voluntary) 
[   96.100189] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   96.100197] Workqueue: hci2 hci_cmd_work
[   96.100213] Call Trace:
[   96.100217]  <TASK>
[   96.100222]  dump_stack_lvl+0xca/0x120
[   96.100239]  print_report+0xcb/0x610
[   96.100255]  ? __virt_addr_valid+0x100/0x5d0
[   96.100270]  ? hci_cmd_work+0x66d/0x6d0
[   96.100284]  ? hci_cmd_work+0x66d/0x6d0
[   96.100298]  kasan_report+0xca/0x100
[   96.100313]  ? hci_cmd_work+0x66d/0x6d0
[   96.100328]  hci_cmd_work+0x66d/0x6d0
[   96.100343]  process_one_work+0x8e1/0x19c0
[   96.100363]  ? __pfx_process_one_work+0x10/0x10
[   96.100379]  ? move_linked_works+0x172/0x270
[   96.100392]  ? assign_work+0x196/0x240
[   96.100408]  worker_thread+0x67e/0xe90
[   96.100424]  ? trace_irq_enable.constprop.0+0xc2/0x100
[   96.100439]  ? __pfx_worker_thread+0x10/0x10
[   96.100455]  kthread+0x3c8/0x740
[   96.100470]  ? __pfx_kthread+0x10/0x10
[   96.100484]  ? ret_from_fork+0x79/0x7a0
[   96.100496]  ? lock_release+0xc8/0x290
[   96.100522]  ? __pfx_kthread+0x10/0x10
[   96.100537]  ret_from_fork+0x67a/0x7a0
[   96.100547]  ? __pfx_ret_from_fork+0x10/0x10
[   96.100559]  ? __switch_to+0x759/0x1060
[   96.100575]  ? __pfx_kthread+0x10/0x10
[   96.100590]  ret_from_fork_asm+0x1a/0x30
[   96.100609]  </TASK>
[   96.100613] 
[   96.114154] Allocated by task 286:
[   96.114435]  kasan_save_stack+0x24/0x50
[   96.114754]  kasan_save_track+0x14/0x30
[   96.115071]  __kasan_slab_alloc+0x59/0x70
[   96.115403]  kmem_cache_alloc_node_noprof+0x228/0x6b0
[   96.115816]  __alloc_skb+0x2ab/0x370
[   96.116121]  hci_cmd_sync_alloc+0x34/0x300
[   96.116463]  __hci_cmd_sync_sk+0xf7/0x5c0
[   96.116801]  __hci_cmd_sync_status_sk+0x4d/0x1a0
[   96.117183]  hci_cmd_sync_status+0x4c/0x70
[   96.117526]  hci_dev_cmd+0x4d5/0x980
[   96.117826]  hci_sock_ioctl+0x493/0x810
[   96.118146]  sock_do_ioctl+0xd1/0x240
[   96.118452]  sock_ioctl+0x40d/0x630
[   96.118749]  __x64_sys_ioctl+0x18f/0x210
[   96.119077]  do_syscall_64+0xbf/0x430
[   96.119384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.119793] 
[   96.119929] Freed by task 305:
[   96.120185]  kasan_save_stack+0x24/0x50
[   96.120505]  kasan_save_track+0x14/0x30
[   96.120832]  kasan_save_free_info+0x3a/0x60
[   96.121178]  __kasan_slab_free+0x43/0x70
[   96.121506]  kmem_cache_free+0x26f/0x500
[   96.121831]  kfree_skbmem+0x18a/0x1f0
[   96.122141]  sk_skb_reason_drop+0x10e/0x1b0
[   96.122483]  vhci_read+0x3d5/0x5d0
[   96.122770]  vfs_read+0x1eb/0xc70
[   96.123051]  ksys_read+0x121/0x240
[   96.123336]  do_syscall_64+0xbf/0x430
[   96.123644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.124047] 
[   96.124185] The buggy address belongs to the object at ffff888009e603c0
[   96.124185]  which belongs to the cache skbuff_head_cache of size 232
[   96.125206] The buggy address is located 56 bytes inside of
[   96.125206]  freed 232-byte region [ffff888009e603c0, ffff888009e604a8)
[   96.126152] 
[   96.126289] The buggy address belongs to the physical page:
[   96.126730] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x9e60
[   96.127343] memcg:ffff88800e444581
[   96.127625] anon flags: 0x100000000000000(node=0|zone=1)
[   96.128047] page_type: f5(slab)
[   96.128316] raw: 0100000000000000 ffff8880096c78c0 ffffea0000344e40 dead000000000003
[   96.128931] raw: 0000000000000000 00000000800c000c 00000000f5000000 ffff88800e444581
[   96.129533] page dumped because: kasan: bad access detected
[   96.129971] 
[   96.130108] Memory state around the buggy address:
[   96.130492]  ffff888009e60280: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   96.131055]  ffff888009e60300: fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc
[   96.131622] >ffff888009e60380: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[   96.131804] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   96.132186]                                                                 ^
[   96.132195]  ffff888009e60400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   96.132203]  ffff888009e60480: fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc
[   96.132210] ==================================================================
[   96.133252] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   96.133414] Disabling lock debugging due to kernel taint
[   96.136186] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   96.136839] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   96.144649] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   96.145426] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   96.179707] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   96.180312] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   96.185120] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   96.185781] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   96.186346] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   96.187206] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   96.188564] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   96.188635] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   96.190044] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   96.195108] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   96.195584] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   96.208569] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   96.208624] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   96.212967] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   97.916560] Bluetooth: hci0: command tx timeout
[   97.979589] Bluetooth: hci1: command tx timeout
[   98.171550] Bluetooth: hci2: command tx timeout
[   98.235639] Bluetooth: hci3: command tx timeout
[   98.236041] Bluetooth: hci7: command tx timeout
[   98.236412] Bluetooth: hci6: command tx timeout
[   98.236850] Bluetooth: hci4: command tx timeout
[   98.236874] Bluetooth: hci5: command tx timeout
[   99.963577] Bluetooth: hci0: command tx timeout
[  100.027608] Bluetooth: hci1: command tx timeout
[  100.221881] Bluetooth: hci2: command tx timeout
[  100.283601] Bluetooth: hci6: command tx timeout
[  100.283641] Bluetooth: hci5: command tx timeout
[  100.284010] Bluetooth: hci4: command tx timeout
[  100.284964] Bluetooth: hci7: command tx timeout
[  100.284998] Bluetooth: hci3: command tx timeout
[  102.012623] Bluetooth: hci0: command tx timeout
[  102.075607] Bluetooth: hci1: command tx timeout
[  102.267633] Bluetooth: hci2: command tx timeout
[  102.331625] Bluetooth: hci4: command tx timeout
[  102.332324] Bluetooth: hci7: command tx timeout
[  102.332352] Bluetooth: hci3: command tx timeout
[  102.333383] Bluetooth: hci5: command tx timeout
[  102.333464] Bluetooth: hci6: command tx timeout
[  104.059576] Bluetooth: hci0: command tx timeout
[  104.123582] Bluetooth: hci1: command tx timeout
[  104.315549] Bluetooth: hci2: command tx timeout
[  104.379599] Bluetooth: hci6: command tx timeout
[  104.380057] Bluetooth: hci4: command tx timeout
[  104.380144] Bluetooth: hci5: command tx timeout
[  104.380437] Bluetooth: hci3: command tx timeout
[  104.381375] Bluetooth: hci7: command tx timeout

VM DIAGNOSIS:
12:06:17  Registers:
info registers vcpu 0
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8293dd05 RDI=ffffffff889747c0 RBP=ffffffff88974780 RSP=ffff888017077618
R8 =0000000000000000 R9 =ffffed10015b2046 R10=0000000000000030 R11=000000003a555043
R12=0000000000000030 R13=0000000000000010 R14=ffffffff88974780 R15=ffffffff8293dcf0
RIP=ffffffff8293dd5d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e538f000 00000000 00000000
LDT=0000 fffffe7c00000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f492c5b77b0 CR3=0000000013987000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f1e2b4a37c000007f1e2b4a37c8
XMM02=00007f1e2b4a37e000007f1e2b4a37c0 XMM03=00007f1e2b4a37c800007f1e2b4a37c0
XMM04=ffffffffffffffffffffffffffffff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000005 RBX=ffff88800f57d340 RCX=0000000000000000 RDX=0000000000000005
RSI=0000000000000000 RDI=ffffffff85e1fd40 RBP=ffff88800f57dd98 RSP=ffff88801986f4d8
R8 =0000000000000000 R9 =0000000000000005 R10=0000000000000001 R11=0000000000000000
R12=ffff88800f57ddc0 R13=0000000000000003 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81527d68 RFL=00000007 [-----PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e548f000 00000000 00000000
LDT=0000 fffffe4f00000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f664603e6f4 CR3=000000001f037000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f664604d47000007f664604cf20
XMM02=00000000000000000000000000000000 XMM03=756e20796d6d756420736e6f6974706f
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=73253d656d616e6c6165722073253d73 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000