Warning: Permanently added '[localhost]:36765' (ECDSA) to the list of known hosts.
2025/09/01 08:32:41 fuzzer started
2025/09/01 08:32:42 dialing manager at localhost:35473
syzkaller login: [   50.612635] cgroup: Unknown subsys name 'net'
[   50.676342] cgroup: Unknown subsys name 'cpuset'
[   50.697640] cgroup: Unknown subsys name 'rlimit'
2025/09/01 08:32:53 syscalls: 2214
2025/09/01 08:32:53 code coverage: enabled
2025/09/01 08:32:53 comparison tracing: enabled
2025/09/01 08:32:53 extra coverage: enabled
2025/09/01 08:32:53 setuid sandbox: enabled
2025/09/01 08:32:53 namespace sandbox: enabled
2025/09/01 08:32:53 Android sandbox: enabled
2025/09/01 08:32:53 fault injection: enabled
2025/09/01 08:32:53 leak checking: enabled
2025/09/01 08:32:53 net packet injection: enabled
2025/09/01 08:32:53 net device setup: enabled
2025/09/01 08:32:53 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2025/09/01 08:32:53 devlink PCI setup: PCI device 0000:00:10.0 is not available
2025/09/01 08:32:53 USB emulation: enabled
2025/09/01 08:32:53 hci packet injection: enabled
2025/09/01 08:32:53 wifi device emulation: enabled
2025/09/01 08:32:53 802.15.4 emulation: enabled
2025/09/01 08:32:53 fetching corpus: 0, signal 0/2000 (executing program)
2025/09/01 08:32:53 fetching corpus: 36, signal 10061/13705 (executing program)
2025/09/01 08:32:54 fetching corpus: 75, signal 27943/32493 (executing program)
2025/09/01 08:32:54 fetching corpus: 125, signal 41901/47053 (executing program)
2025/09/01 08:32:54 fetching corpus: 175, signal 53773/59198 (executing program)
2025/09/01 08:32:54 fetching corpus: 224, signal 59245/65224 (executing program)
2025/09/01 08:32:54 fetching corpus: 274, signal 64053/70498 (executing program)
2025/09/01 08:32:54 fetching corpus: 322, signal 68446/75278 (executing program)
2025/09/01 08:32:54 fetching corpus: 371, signal 73967/80791 (executing program)
2025/09/01 08:32:55 fetching corpus: 420, signal 77481/84481 (executing program)
2025/09/01 08:32:55 fetching corpus: 470, signal 80457/87623 (executing program)
2025/09/01 08:32:55 fetching corpus: 520, signal 83081/90348 (executing program)
2025/09/01 08:32:55 fetching corpus: 570, signal 84722/92245 (executing program)
2025/09/01 08:32:55 fetching corpus: 620, signal 87084/94679 (executing program)
2025/09/01 08:32:55 fetching corpus: 670, signal 88737/96463 (executing program)
2025/09/01 08:32:55 fetching corpus: 720, signal 90921/98571 (executing program)
2025/09/01 08:32:55 fetching corpus: 769, signal 93596/100984 (executing program)
2025/09/01 08:32:56 fetching corpus: 819, signal 95995/103126 (executing program)
2025/09/01 08:32:56 fetching corpus: 868, signal 97435/104496 (executing program)
2025/09/01 08:32:56 fetching corpus: 918, signal 99811/106406 (executing program)
2025/09/01 08:32:56 fetching corpus: 968, signal 101441/107816 (executing program)
2025/09/01 08:32:56 fetching corpus: 1018, signal 102576/108871 (executing program)
2025/09/01 08:32:56 fetching corpus: 1068, signal 104190/110171 (executing program)
2025/09/01 08:32:56 fetching corpus: 1118, signal 106419/111751 (executing program)
2025/09/01 08:32:57 fetching corpus: 1168, signal 107800/112771 (executing program)
2025/09/01 08:32:57 fetching corpus: 1218, signal 109109/113757 (executing program)
2025/09/01 08:32:57 fetching corpus: 1268, signal 110640/114794 (executing program)
2025/09/01 08:32:57 fetching corpus: 1318, signal 112235/115791 (executing program)
2025/09/01 08:32:57 fetching corpus: 1368, signal 113852/116760 (executing program)
2025/09/01 08:32:57 fetching corpus: 1418, signal 115054/117500 (executing program)
2025/09/01 08:32:57 fetching corpus: 1468, signal 116103/118119 (executing program)
2025/09/01 08:32:57 fetching corpus: 1518, signal 117052/118661 (executing program)
2025/09/01 08:32:58 fetching corpus: 1535, signal 117576/118988 (executing program)
2025/09/01 08:32:58 fetching corpus: 1537, signal 117583/119046 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119095 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119133 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119168 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119213 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119249 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119291 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119337 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119389 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119431 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119480 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119522 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119566 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119615 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119660 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119697 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119747 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119778 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119814 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119855 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119883 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119918 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/119958 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/120000 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/120041 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/120078 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/120092 (executing program)
2025/09/01 08:32:58 fetching corpus: 1538, signal 117584/120092 (executing program)
2025/09/01 08:33:00 starting 8 fuzzer processes
08:33:00 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
fgetxattr(r0, &(0x7f0000000080)=@known='system.sockprotoname\x00', &(0x7f0000000900)=""/4096, 0x1000)

08:33:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x7, 0x0, 0x0)

08:33:00 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg$sock(r0, &(0x7f0000004b40)=[{{&(0x7f0000000200)=@nfc={0x27, 0x1}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000300)="e557ce3bd6d952e732a1369d550d", 0xe}], 0x1, &(0x7f0000000280)=[@timestamping={{0x14, 0x1, 0x4f}}], 0x18}}], 0x1, 0x0)

08:33:00 executing program 7:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000300), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)

08:33:00 executing program 3:
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0)
ioctl$BLKPG(r0, 0x1269, &(0x7f0000000040))

08:33:00 executing program 4:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

[   68.438209] audit: type=1400 audit(1756715580.662:7): avc:  denied  { execmem } for  pid=272 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
08:33:00 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
tee(r0, r1, 0x208, 0x0)

08:33:00 executing program 5:
futex(0x0, 0xc, 0x0, 0x0, 0x0, 0x0)

[   69.679933] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   69.684887] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   69.686688] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   69.689359] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   69.692401] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   69.702978] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   69.710824] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   69.712667] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   69.717979] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   69.729480] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   69.739368] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   69.742027] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   69.744756] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   69.746067] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   69.749527] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   69.751614] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   69.753296] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   69.756853] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   69.758064] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   69.760927] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   69.762740] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   69.770189] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   69.772605] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   69.789415] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   69.792849] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   69.795868] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   69.797046] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   69.803181] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   69.805951] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   69.807192] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   69.809471] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   69.811012] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   69.812332] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   69.813212] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   69.814930] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   69.816457] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   69.823462] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   69.828421] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   69.844487] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   69.866542] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   71.706049] Bluetooth: hci0: command tx timeout
[   71.833628] Bluetooth: hci4: command tx timeout
[   71.833726] Bluetooth: hci3: command tx timeout
[   71.834337] Bluetooth: hci1: command tx timeout
[   71.898597] Bluetooth: hci7: command tx timeout
[   71.898672] Bluetooth: hci6: command tx timeout
[   71.899192] Bluetooth: hci2: command tx timeout
[   71.964956] Bluetooth: hci5: command tx timeout
[   73.753846] Bluetooth: hci0: command tx timeout
[   73.881583] Bluetooth: hci3: command tx timeout
[   73.881617] Bluetooth: hci4: command tx timeout
[   73.882421] Bluetooth: hci1: command tx timeout
[   73.945557] Bluetooth: hci2: command tx timeout
[   73.946651] Bluetooth: hci6: command tx timeout
[   73.946744] Bluetooth: hci7: command tx timeout
[   74.009569] Bluetooth: hci5: command tx timeout
[   75.801644] Bluetooth: hci0: command tx timeout
[   75.929620] Bluetooth: hci4: command tx timeout
[   75.929867] Bluetooth: hci3: command tx timeout
[   75.930032] Bluetooth: hci1: command tx timeout
[   75.993583] Bluetooth: hci7: command tx timeout
[   75.993643] Bluetooth: hci6: command tx timeout
[   75.993996] Bluetooth: hci2: command tx timeout
[   76.058536] Bluetooth: hci5: command tx timeout
[   77.849583] Bluetooth: hci0: command tx timeout
[   77.977660] Bluetooth: hci3: command tx timeout
[   77.978072] Bluetooth: hci1: command tx timeout
[   77.978442] Bluetooth: hci4: command tx timeout
[   78.041719] Bluetooth: hci6: command tx timeout
[   78.041805] Bluetooth: hci2: command tx timeout
[   78.042110] Bluetooth: hci7: command tx timeout
[   78.107591] Bluetooth: hci5: command tx timeout
[  104.645412] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.646114] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.829009] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.829661] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.940551] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.941194] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.073244] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.073908] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:33:37 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg$sock(r0, &(0x7f0000004b40)=[{{&(0x7f0000000200)=@nfc={0x27, 0x1}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000300)="e557ce3bd6d952e732a1369d550d", 0xe}], 0x1, &(0x7f0000000280)=[@timestamping={{0x14, 0x1, 0x4f}}], 0x18}}], 0x1, 0x0)

[  105.171164] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.171811] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:33:37 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg$sock(r0, &(0x7f0000004b40)=[{{&(0x7f0000000200)=@nfc={0x27, 0x1}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000300)="e557ce3bd6d952e732a1369d550d", 0xe}], 0x1, &(0x7f0000000280)=[@timestamping={{0x14, 0x1, 0x4f}}], 0x18}}], 0x1, 0x0)

[  105.254956] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.255643] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:33:37 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmmsg$sock(r0, &(0x7f0000004b40)=[{{&(0x7f0000000200)=@nfc={0x27, 0x1}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000300)="e557ce3bd6d952e732a1369d550d", 0xe}], 0x1, &(0x7f0000000280)=[@timestamping={{0x14, 0x1, 0x4f}}], 0x18}}], 0x1, 0x0)

[  105.303829] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.304430] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:33:37 executing program 1:
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@ipv4={'\x00', '\xff\xff', @multicast1}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x3c}, 0x2, @in=@empty, 0x0, 0x4}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)

[  105.375303] audit: type=1400 audit(1756715617.598:8): avc:  denied  { open } for  pid=3875 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  105.379323] audit: type=1400 audit(1756715617.599:9): avc:  denied  { kernel } for  pid=3875 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  105.385125] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.385848] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.430050] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.430778] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:33:37 executing program 1:
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@ipv4={'\x00', '\xff\xff', @multicast1}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x3c}, 0x2, @in=@empty, 0x0, 0x4}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)

[  105.543829] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.544460] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.582985] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.583641] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.611798] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.612386] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.662581] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.663179] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.691871] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.692473] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.736572] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.737162] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.762390] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.763462] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
08:33:38 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
fgetxattr(r0, &(0x7f0000000080)=@known='system.sockprotoname\x00', &(0x7f0000000900)=""/4096, 0x1000)

08:33:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x7, 0x0, 0x0)

08:33:38 executing program 5:
futex(0x0, 0xc, 0x0, 0x0, 0x0, 0x0)

08:33:38 executing program 4:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="02c9a036013201010003000800fb020500cbfd3f000d1f0800ac8504003f00090010ff040003000004111f020005000b40a2000800ec0c32226549a2f915f4838a6dbbd35296187369d7fca7001fb0782b552225c87836e3189475ff90fb40d0cd4e0e9cf0fac7a7909f60a47492021783eba6084ac1f7cb8370c6266732adc7e04678a0ae51dc8131e3dea69f41ccd97574a4f21abf304140e8c77412f9f17044966389d8e1a6739ed8dd418590c8908f163213c3770bb099d944d92d557322a93e55fee4ce0dffdf09f64b4e78d4da8c35b1af1210080400010080000c01050000200700000cab0500000107000505e64800fcff050004000610060109000200000009000000010000000102020006103f00010401000100f30100000200000001020200061022001adb0200000006000000d301000001020000c3a64dbb9ec4c01965271a83417d15bfc9b052fd6d5f82dfab5772575f90bc5b51967a798b82e3ee2cd7f9a83b9543388d7c4d4f53d6187ed01c5b4f47222de7372c73aaa4027ccb00e6e57da3f1b8b91677c563ece473acca"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
tee(r0, r1, 0x208, 0x0)

08:33:38 executing program 1:
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@ipv4={'\x00', '\xff\xff', @multicast1}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x3c}, 0x2, @in=@empty, 0x0, 0x4}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)

08:33:38 executing program 7:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000300), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)

08:33:38 executing program 3:
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0)
ioctl$BLKPG(r0, 0x1269, &(0x7f0000000040))

[  106.165222] kmemleak: Found object by alias at 0x607f1a63e554
[  106.165242] CPU: 1 UID: 0 PID: 3924 Comm: syz-executor.7 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  106.165260] Tainted: [W]=WARN
[  106.165264] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  106.165272] Call Trace:
[  106.165276]  <TASK>
[  106.165281]  dump_stack_lvl+0xca/0x120
[  106.165306]  __lookup_object+0x94/0xb0
[  106.165324]  delete_object_full+0x27/0x70
[  106.165341]  free_percpu+0x30/0x1160
[  106.165358]  ? arch_uprobe_clear_state+0x16/0x140
[  106.165378]  futex_hash_free+0x38/0xc0
[  106.165393]  mmput+0x2d3/0x390
[  106.165413]  do_exit+0x79d/0x2970
[  106.165427]  ? lock_release+0xc8/0x290
[  106.165444]  ? __pfx_do_exit+0x10/0x10
[  106.165459]  ? find_held_lock+0x2b/0x80
[  106.165476]  ? get_signal+0x835/0x2340
[  106.165501]  do_group_exit+0xd3/0x2a0
[  106.165516]  get_signal+0x2315/0x2340
[  106.165535]  ? inet_stream_connect+0x7a/0xa0
[  106.165551]  ? inet_stream_connect+0x7a/0xa0
[  106.165566]  ? __pfx_get_signal+0x10/0x10
[  106.165583]  ? do_futex+0x135/0x370
[  106.165597]  ? __pfx_do_futex+0x10/0x10
[  106.165612]  arch_do_signal_or_restart+0x80/0x790
[  106.165630]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  106.165647]  ? __x64_sys_futex+0x1c9/0x4d0
[  106.165660]  ? __x64_sys_futex+0x1d2/0x4d0
[  106.165674]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  106.165688]  ? __pfx___x64_sys_futex+0x10/0x10
[  106.165701]  ? xfd_validate_state+0x55/0x180
[  106.165718]  ? __sys_setsockopt+0x13f/0x1a0
[  106.165741]  exit_to_user_mode_loop+0x8b/0x110
[  106.165754]  do_syscall_64+0x2f7/0x360
[  106.165776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.165792] RIP: 0033:0x7f0805239b19
[  106.165803] Code: Unable to access opcode bytes at 0x7f0805239aef.
[  106.165810] RSP: 002b:00007f08027af218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  106.165825] RAX: fffffffffffffe00 RBX: 00007f080534cf68 RCX: 00007f0805239b19
[  106.165836] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f080534cf68
[  106.165844] RBP: 00007f080534cf60 R08: 0000000000000000 R09: 0000000000000000
[  106.165851] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f080534cf6c
[  106.165858] R13: 00007ffcf887df8f R14: 00007f08027af300 R15: 0000000000022000
[  106.165874]  </TASK>
[  106.165878] kmemleak: Object (percpu) 0x607f1a63e550 (size 8):
[  106.165884] kmemleak:   comm "syz-executor.7", pid 3918, jiffies 4294772907
[  106.165892] kmemleak:   min_count = 1
[  106.165896] kmemleak:   count = 0
[  106.165899] kmemleak:   flags = 0x21
[  106.165903] kmemleak:   checksum = 0
[  106.165907] kmemleak:   backtrace:
[  106.165910]  pcpu_alloc_noprof+0x87a/0x1170
[  106.165926]  percpu_ref_init+0x37/0x400
[  106.165937]  blkg_alloc+0xe9/0x7d0
[  106.165950]  blkg_create+0xe08/0x1420
[  106.165963]  bio_associate_blkg_from_css+0xe06/0x1380
[  106.165977]  bio_associate_blkg+0x10e/0x2a0
[  106.165990]  bio_init+0x2dd/0x570
[  106.166003]  bio_alloc_bioset+0x2cf/0x8c0
[  106.166018]  submit_bh_wbc+0x286/0x720
[  106.166036]  ext4_read_bh_nowait+0x156/0x240
[  106.166049]  __ext4_get_inode_loc+0x813/0x1390
[  106.166060]  ext4_get_inode_loc+0xbd/0x160
[  106.166071]  ext4_reserve_inode_write+0x155/0x350
[  106.166084]  ext4_xattr_set_handle+0x403/0x14c0
[  106.166096]  ext4_initxattrs+0xb9/0x120
[  106.166110]  security_inode_init_security+0x26d/0x390
[  106.206345] kmemleak: Cannot insert 0x607f1a63e554 into the object search tree (overlaps existing)
[  106.206361] CPU: 1 UID: 0 PID: 3928 Comm: syz-executor.4 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  106.206380] Tainted: [W]=WARN
[  106.206383] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  106.206391] Call Trace:
[  106.206394]  <TASK>
[  106.206398]  dump_stack_lvl+0xca/0x120
[  106.206422]  __link_object+0x190/0x210
[  106.206440]  __create_object+0x48/0x80
[  106.206457]  pcpu_alloc_noprof+0x87a/0x1170
[  106.206481]  alloc_netdev_mqs+0x131/0x1360
[  106.206504]  ? __pfx_loopback_setup+0x10/0x10
[  106.206521]  ? __pfx_loopback_net_init+0x10/0x10
[  106.206533]  loopback_net_init+0x38/0x180
[  106.206545]  ? __pfx_loopback_net_init+0x10/0x10
[  106.206557]  ops_init+0x1e1/0x650
[  106.206571]  setup_net+0x10d/0x320
[  106.206581]  ? lockdep_init_map_type+0x4b/0x240
[  106.206596]  ? __pfx_setup_net+0x10/0x10
[  106.206609]  ? debug_mutex_init+0x37/0x70
[  106.206628]  copy_net_ns+0x2e3/0x650
[  106.206642]  create_new_namespaces+0x3f6/0xab0
[  106.206665]  copy_namespaces+0x45c/0x580
[  106.206684]  copy_process+0x2649/0x73c0
[  106.206696]  ? __pfx___futex_wait+0x10/0x10
[  106.206720]  ? __pfx_copy_process+0x10/0x10
[  106.206735]  ? futex_private_hash_put+0x127/0x2d0
[  106.206752]  kernel_clone+0xea/0x7f0
[  106.206764]  ? __pfx_futex_wake+0x10/0x10
[  106.206779]  ? __pfx_kernel_clone+0x10/0x10
[  106.206794]  ? vfs_write+0x169/0x1150
[  106.206810]  ? do_futex+0x135/0x370
[  106.206824]  __do_sys_clone+0xce/0x120
[  106.206836]  ? __pfx___do_sys_clone+0x10/0x10
[  106.206858]  ? syscall_user_dispatch+0x78/0x140
[  106.206875]  do_syscall_64+0xbf/0x360
[  106.206888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.206900] RIP: 0033:0x7fbac8e81b19
[  106.206909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  106.206921] RSP: 002b:00007fbac63f7188 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  106.206932] RAX: ffffffffffffffda RBX: 00007fbac8f94f60 RCX: 00007fbac8e81b19
[  106.206940] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 000000004c01f900
[  106.206947] RBP: 00007fbac8edbf6d R08: 0000000000000000 R09: 0000000000000000
[  106.206954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  106.206960] R13: 00007fff9901422f R14: 00007fbac63f7300 R15: 0000000000022000
[  106.206976]  </TASK>
[  106.207657] kmemleak: Kernel memory leak detector disabled
[  106.207661] kmemleak: Object (percpu) 0x607f1a63e550 (size 8):
[  106.207669] kmemleak:   comm "syz-executor.7", pid 3918, jiffies 4294772907
[  106.207676] kmemleak:   min_count = 1
[  106.207680] kmemleak:   count = 0
[  106.207684] kmemleak:   flags = 0x21
[  106.207687] kmemleak:   checksum = 0
[  106.207691] kmemleak:   backtrace:
[  106.207695]  pcpu_alloc_noprof+0x87a/0x1170
[  106.207711]  percpu_ref_init+0x37/0x400
[  106.207721]  blkg_alloc+0xe9/0x7d0
[  106.207734]  blkg_create+0xe08/0x1420
[  106.207747]  bio_associate_blkg_from_css+0xe06/0x1380
[  106.207761]  bio_associate_blkg+0x10e/0x2a0
[  106.207774]  bio_init+0x2dd/0x570
[  106.207787]  bio_alloc_bioset+0x2cf/0x8c0
[  106.207802]  submit_bh_wbc+0x286/0x720
[  106.207819]  ext4_read_bh_nowait+0x156/0x240
[  106.207832]  __ext4_get_inode_loc+0x813/0x1390
[  106.207842]  ext4_get_inode_loc+0xbd/0x160
[  106.207853]  ext4_reserve_inode_write+0x155/0x350
[  106.207866]  ext4_xattr_set_handle+0x403/0x14c0
[  106.207877]  ext4_initxattrs+0xb9/0x120
[  106.207891]  security_inode_init_security+0x26d/0x390
08:33:38 executing program 5:
futex(0x0, 0xc, 0x0, 0x0, 0x0, 0x0)

08:33:38 executing program 3:
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0)
ioctl$BLKPG(r0, 0x1269, &(0x7f0000000040))

08:33:38 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
tee(r0, r1, 0x208, 0x0)

08:33:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x7, 0x0, 0x0)

08:33:38 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
fgetxattr(r0, &(0x7f0000000080)=@known='system.sockprotoname\x00', &(0x7f0000000900)=""/4096, 0x1000)

08:33:38 executing program 4:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="03c900009e14e837273701de118d8aad382a2ee9f865767a450b0ce0497a1c7e0977a673802bf56b874c3aea0b1fe4876f06be57ef79f965a7f1cd1fe1bf9d46e29255c8a58c47488ca00c00eba31c89ba1c40cc01a08ed8d37aee0b442f5785ab6dc4342378839eccb5677f44a43dbfcc9bb9375ab873a1cd04b29c15780d1823f686e4bdb209c750cade7ba758bd4f6520c2fd1f9d427d54142daacb9c16270cfa6d8599d58c72f2a4629f75fb238c3929315cca3b888643088fe02670d8c07a5a06e7e8d1ee8ff9a20b5da168f7d6737e0a5d0583471a33fad62a4e3f0a01c8a65466d810ef3d82a57e4c196a2ea8f477fb59036f1e1616cfaa68735835dfdd644f144f4d78da2edb3a32707d1816baa4c603a978c9446174a83b460b157556bfb4dd1204f0aead"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 7:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000300), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)

08:33:38 executing program 1:
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@ipv4={'\x00', '\xff\xff', @multicast1}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x3c}, 0x2, @in=@empty, 0x0, 0x4}}, 0xe8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)

08:33:38 executing program 7:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000300), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)

08:33:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x7, 0x0, 0x0)

08:33:38 executing program 5:
futex(0x0, 0xc, 0x0, 0x0, 0x0, 0x0)

08:33:38 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
fgetxattr(r0, &(0x7f0000000080)=@known='system.sockprotoname\x00', &(0x7f0000000900)=""/4096, 0x1000)

08:33:38 executing program 1:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 3:
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0)
ioctl$BLKPG(r0, 0x1269, &(0x7f0000000040))

08:33:38 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
tee(r0, r1, 0x208, 0x0)

08:33:38 executing program 2:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 2:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 4:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 5:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="02c9a036013201010003000800fb020500cbfd3f000d1f0800ac8504003f00090010ff040003000004111f020005000b40a2000800ec0c32226549a2f915f4838a6dbbd35296187369d7fca7001fb0782b552225c87836e3189475ff90fb40d0cd4e0e9cf0fac7a7909f60a47492021783eba6084ac1f7cb8370c6266732adc7e04678a0ae51dc8131e3dea69f41ccd97574a4f21abf304140e8c77412f9f17044966389d8e1a6739ed8dd418590c8908f163213c3770bb099d944d92d557322a93e55fee4ce0dffdf09f64b4e78d4da8c35b1af1210080400010080000c01050000200700000cab0500000107000505e64800fcff050004000610060109000200000009000000010000000102020006103f00010401000100f30100000200000001020200061022001adb0200000006000000d301000001020000c3a64dbb9ec4c01965271a83417d15bfc9b052fd6d5f82dfab5772575f90bc5b51967a798b82e3ee2cd7f9a83b9543388d7c4d4f53d6187ed01c5b4f47222de7372c73aaa4027ccb00e6e57da3f1b8b91677c563ece473acca"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 1:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="03c900009e14e837273701de118d8aad382a2ee9f865767a450b0ce0497a1c7e0977a673802bf56b874c3aea0b1fe4876f06be57ef79f965a7f1cd1fe1bf9d46e29255c8a58c47488ca00c00eba31c89ba1c40cc01a08ed8d37aee0b442f5785ab6dc4342378839eccb5677f44a43dbfcc9bb9375ab873a1cd04b29c15780d1823f686e4bdb209c750cade7ba758bd4f6520c2fd1f9d427d54142daacb9c16270cfa6d8599d58c72f2a4629f75fb238c3929315cca3b888643088fe02670d8c07a5a06e7e8d1ee8ff9a20b5da168f7d6737e0a5d0583471a33fad62a4e3f0a01c8a65466d810ef3d82a57e4c196a2ea8f477fb59036f1e1616cfaa68735835dfdd644f144f4d78da2edb3a32707d1816baa4c603a978c9446174a83b460b157556bfb4dd1204f0aead"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 7:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="02c9a036013201010003000800fb020500cbfd3f000d1f0800ac8504003f00090010ff040003000004111f020005000b40a2000800ec0c32226549a2f915f4838a6dbbd35296187369d7fca7001fb0782b552225c87836e3189475ff90fb40d0cd4e0e9cf0fac7a7909f60a47492021783eba6084ac1f7cb8370c6266732adc7e04678a0ae51dc8131e3dea69f41ccd97574a4f21abf304140e8c77412f9f17044966389d8e1a6739ed8dd418590c8908f163213c3770bb099d944d92d557322a93e55fee4ce0dffdf09f64b4e78d4da8c35b1af1210080400010080000c01050000200700000cab0500000107000505e64800fcff050004000610060109000200000009000000010000000102020006103f00010401000100f30100000200000001020200061022001adb0200000006000000d301000001020000c3a64dbb9ec4c01965271a83417d15bfc9b052fd6d5f82dfab5772575f90bc5b51967a798b82e3ee2cd7f9a83b9543388d7c4d4f53d6187ed01c5b4f47222de7372c73aaa4027ccb00e6e57da3f1b8b91677c563ece473acca"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 6:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000300), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)

08:33:38 executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="010059900100000018000000", @ANYRES32=r0, @ANYBLOB="0000100000000000f29c0000"])
r1 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x20)
r2 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
fdatasync(r2)

08:33:38 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0xe, &(0x7f0000000000)="56fcc478", 0x4)

08:33:38 executing program 6:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000300), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)

08:33:38 executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="010059900100000018000000", @ANYRES32=r0, @ANYBLOB="0000100000000000f29c0000"])
r1 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x20)
r2 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
fdatasync(r2)

08:33:38 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0xe, &(0x7f0000000000)="56fcc478", 0x4)

08:33:38 executing program 6:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000300), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)

08:33:38 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="010059900100000018000000", @ANYRES32=r0, @ANYBLOB="0000100000000000f29c0000"])
r1 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x20)
r2 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
fdatasync(r2)

08:33:38 executing program 5:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="03c900009e14e837273701de118d8aad382a2ee9f865767a450b0ce0497a1c7e0977a673802bf56b874c3aea0b1fe4876f06be57ef79f965a7f1cd1fe1bf9d46e29255c8a58c47488ca00c00eba31c89ba1c40cc01a08ed8d37aee0b442f5785ab6dc4342378839eccb5677f44a43dbfcc9bb9375ab873a1cd04b29c15780d1823f686e4bdb209c750cade7ba758bd4f6520c2fd1f9d427d54142daacb9c16270cfa6d8599d58c72f2a4629f75fb238c3929315cca3b888643088fe02670d8c07a5a06e7e8d1ee8ff9a20b5da168f7d6737e0a5d0583471a33fad62a4e3f0a01c8a65466d810ef3d82a57e4c196a2ea8f477fb59036f1e1616cfaa68735835dfdd644f144f4d78da2edb3a32707d1816baa4c603a978c9446174a83b460b157556bfb4dd1204f0aead"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 7:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:38 executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="010059900100000018000000", @ANYRES32=r0, @ANYBLOB="0000100000000000f29c0000"])
r1 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x20)
r2 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
fdatasync(r2)

[  106.755686] ------------[ cut here ]------------
[  106.756251] WARNING: fs/namespace.c:1375 at cleanup_mnt+0x33f/0x430, CPU#1: kworker/1:3/267
[  106.757640] Modules linked in:
[  106.758525] CPU: 1 UID: 0 PID: 267 Comm: kworker/1:3 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  106.761160] Tainted: [W]=WARN
[  106.762015] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  106.763971] Workqueue: events free_ipc
[  106.764822] RIP: 0010:cleanup_mnt+0x33f/0x430
[  106.765997] Code: c7 20 49 d1 85 e8 41 b3 fa 02 49 8d 7d 40 5b 48 c7 c6 d0 fa be 81 5d 41 5c 41 5d 41 5e 41 5f e9 97 9a 9c ff e8 f2 3c b4 ff 90 <0f> 0b 90 e9 e6 fc ff ff e8 e4 3c b4 ff 4c 89 ef e8 6c d7 06 00 e9
[  106.767465] RSP: 0018:ffff88801734fb10 EFLAGS: 00010293
[  106.767911] RAX: 0000000000000000 RBX: 0000000000000009 RCX: ffffffff81bfb6a5
[  106.768482] RDX: ffff88801a115280 RSI: ffffffff81bfb9be RDI: 0000000000000005
[  106.769065] RBP: ffff88801fd59a40 R08: 0000000000000000 R09: fffffbfff0b42d07
[  106.769656] R10: 0000000000000009 R11: 0000000000000001 R12: 0000000000004000
[  106.770285] R13: ffff88801fd59a40 R14: ffff88801fd59aa0 R15: 0000000000000000
[  106.770874] FS:  0000000000000000(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  106.771526] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  106.771993] CR2: 00007fff96bbfff8 CR3: 000000003bea4000 CR4: 0000000000350ef0
[  106.772575] Call Trace:
[  106.772792]  <TASK>
[  106.772981]  mntput_no_expire+0xa98/0xbe0
[  106.773326]  ? __pfx_mntput_no_expire+0x10/0x10
[  106.773733]  ? lock_is_held_type+0x9e/0x120
[  106.774114]  mntput+0x6b/0x90
[  106.774385]  free_ipc+0x179/0x2b0
[  106.774696]  process_one_work+0x8e1/0x19c0
[  106.775055]  ? __pfx_process_one_work+0x10/0x10
[  106.775430]  ? move_linked_works+0x172/0x270
[  106.775816]  ? assign_work+0x196/0x240
[  106.776142]  worker_thread+0x67e/0xe90
[  106.776459]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  106.776909]  ? __pfx_worker_thread+0x10/0x10
[  106.777273]  kthread+0x3c8/0x740
[  106.777591]  ? __pfx_kthread+0x10/0x10
[  106.777928]  ? ret_from_fork+0x23/0x430
[  106.778259]  ? lock_release+0xc8/0x290
[  106.778599]  ? __pfx_kthread+0x10/0x10
[  106.778917]  ret_from_fork+0x34b/0x430
[  106.779238]  ? __pfx_kthread+0x10/0x10
[  106.779582]  ret_from_fork_asm+0x1a/0x30
[  106.779927]  </TASK>
[  106.780120] irq event stamp: 1981
[  106.780400] hardirqs last  enabled at (1989): [<ffffffff81541b18>] __up_console_sem+0x78/0x80
[  106.781115] hardirqs last disabled at (2004): [<ffffffff81541afd>] __up_console_sem+0x5d/0x80
[  106.781825] softirqs last  enabled at (2002): [<ffffffff813bafcc>] handle_softirqs+0x50c/0x770
[  106.782532] softirqs last disabled at (1997): [<ffffffff813bb364>] __irq_exit_rcu+0xc4/0x100
[  106.783212] ---[ end trace 0000000000000000 ]---
08:33:39 executing program 7:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:39 executing program 2:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="03c900009e14e837273701de118d8aad382a2ee9f865767a450b0ce0497a1c7e0977a673802bf56b874c3aea0b1fe4876f06be57ef79f965a7f1cd1fe1bf9d46e29255c8a58c47488ca00c00eba31c89ba1c40cc01a08ed8d37aee0b442f5785ab6dc4342378839eccb5677f44a43dbfcc9bb9375ab873a1cd04b29c15780d1823f686e4bdb209c750cade7ba758bd4f6520c2fd1f9d427d54142daacb9c16270cfa6d8599d58c72f2a4629f75fb238c3929315cca3b888643088fe02670d8c07a5a06e7e8d1ee8ff9a20b5da168f7d6737e0a5d0583471a33fad62a4e3f0a01c8a65466d810ef3d82a57e4c196a2ea8f477fb59036f1e1616cfaa68735835dfdd644f144f4d78da2edb3a32707d1816baa4c603a978c9446174a83b460b157556bfb4dd1204f0aead"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:39 executing program 5:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="03c900009e14e837273701de118d8aad382a2ee9f865767a450b0ce0497a1c7e0977a673802bf56b874c3aea0b1fe4876f06be57ef79f965a7f1cd1fe1bf9d46e29255c8a58c47488ca00c00eba31c89ba1c40cc01a08ed8d37aee0b442f5785ab6dc4342378839eccb5677f44a43dbfcc9bb9375ab873a1cd04b29c15780d1823f686e4bdb209c750cade7ba758bd4f6520c2fd1f9d427d54142daacb9c16270cfa6d8599d58c72f2a4629f75fb238c3929315cca3b888643088fe02670d8c07a5a06e7e8d1ee8ff9a20b5da168f7d6737e0a5d0583471a33fad62a4e3f0a01c8a65466d810ef3d82a57e4c196a2ea8f477fb59036f1e1616cfaa68735835dfdd644f144f4d78da2edb3a32707d1816baa4c603a978c9446174a83b460b157556bfb4dd1204f0aead"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:39 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0xe, &(0x7f0000000000)="56fcc478", 0x4)

08:33:39 executing program 1:
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="045084200ca69b1b09"], 0x9)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="02c9a036013201010003000800fb020500cbfd3f000d1f0800ac8504003f00090010ff040003000004111f020005000b40a2000800ec0c32226549a2f915f4838a6dbbd35296187369d7fca7001fb0782b552225c87836e3189475ff90fb40d0cd4e0e9cf0fac7a7909f60a47492021783eba6084ac1f7cb8370c6266732adc7e04678a0ae51dc8131e3dea69f41ccd97574a4f21abf304140e8c77412f9f17044966389d8e1a6739ed8dd418590c8908f163213c3770bb099d944d92d557322a93e55fee4ce0dffdf09f64b4e78d4da8c35b1af1210080400010080000c01050000200700000cab0500000107000505e64800fcff050004000610060109000200000009000000010000000102020006103f00010401000100f30100000200000001020200061022001adb0200000006000000d301000001020000c3a64dbb9ec4c01965271a83417d15bfc9b052fd6d5f82dfab5772575f90bc5b51967a798b82e3ee2cd7f9a83b9543388d7c4d4f53d6187ed01c5b4f47222de7372c73aaa4027ccb00e6e57da3f1b8b91677c563ece473acca"], 0x13b)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xa2}, "3b9d1d50823db5e2e49ba1f7c2a596412882a4a358c2aadd49ebbc0ac1086a7fd8d8a2ce0e22630aca0a5a00a708b5785800dc05cbd28b2f73d04ea40222b037b3f53c82bee4a2c5a30c7afbe4259ace371f82e3a651cf064f90a3b1d64cee29c1e1c666def7bc6ee3c62ffbbfa31f6b97f5ea0a3dd6597d746320e598031b2cceddb4adc829a1ee1c1119d4eb41939be2f9c119b1c38aef5742e35b2b5de861e4da"}, 0xa6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT, 0x15c)
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="fd7ea2ae431801ca0fe5d5c51f9d4dfcb43d73de5b3dac2d50f528007eb52b8ecdef2d4fa6910711f969346060f1a2750350be4a656348f24f00f5b33119828ef18a5ed3d65488539f7db93908d9b0a695193951648af11df5f28807f2a4224beee75beb63bd391060f79d40d284cd75d9581334fb07"], 0xa)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
faccessat2(r0, &(0x7f0000000040)='./file0\x00', 0x1a1, 0x1a00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9e00a8da2fc2600131b02008000"], 0xf)
syz_emit_vhci(&(0x7f0000000500)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x8c}, "b85bd39cdd9c8132caf9a52aaed54f1beac66b0d20609795f390b6e6bd67517df18abe884c05ed0745a531794b2f525f129dab6f54a99c60c7e214bf21b034e69f08e326aef661b51cb4e9cd7eeb3572dd65d0bb6a60899dde430f28eb92f08f1a14ea87df5dec048a0b787386a6a3b5216632f1f1a8f5be29ffb813b5b0c5905eb9d38e163ef73386531ce3"}, 0x90)
clone(0x4c01f900, 0x0, &(0x7f0000000080), 0x0, 0x0)

08:33:39 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="010059900100000018000000", @ANYRES32=r0, @ANYBLOB="0000100000000000f29c0000"])
r1 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x20)
r2 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
fdatasync(r2)

08:33:39 executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="010059900100000018000000", @ANYRES32=r0, @ANYBLOB="0000100000000000f29c0000"])
r1 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x20)
r2 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
fdatasync(r2)

08:33:39 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="010059900100000018000000", @ANYRES32=r0, @ANYBLOB="0000100000000000f29c0000"])
r1 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x20)
r2 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
fdatasync(r2)

08:33:39 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0xe, &(0x7f0000000000)="56fcc478", 0x4)

08:33:39 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="010059900100000018000000", @ANYRES32=r0, @ANYBLOB="0000100000000000f29c0000"])
r1 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x20)
r2 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
fdatasync(r2)

08:33:39 executing program 0:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
fstatfs(r0, &(0x7f0000000100)=""/246)

08:33:39 executing program 3:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x16, &(0x7f0000000140), 0x4)

08:33:39 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1b, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35333334383534323200"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000dced220ba9804d58a8dffc387fa17f8a010000000c00000000000000d7f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010500)="ffffffff07000000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d7f4655fd7f4655fd7f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd8f4655fd8f4655f00000000000004000200000000000000050000000d00"/64, 0x40, 0x1500}, {&(0x7f0000010f00)="20000000181166091811660900000000d7f4655f00"/32, 0x20, 0x1580}, {&(0x7f0000011000)="c0410000002c0000d7f4655fd7f4655fd7f4655f00000000000002001600000000000000000000000e0000000f000000100000001100000012000000130000001400000015000000160000001700000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d7f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x1e00}, {&(0x7f0000011100)="ed4100003c000000d8f4655fd8f4655fd8f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000007782994400000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011200)="ed8100001a040000d8f4655fd8f4655fd8f4655f0000000000000100040000000000000001000000190000001a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000567a372d00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0xa0, 0x2000}, {&(0x7f0000011300)="ffa1000026000000d8f4655fd8f4655fd8f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3533333438353432322f66696c65302f66696c653000000000000000000000000000000000000000000000ae16d32f00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0xa0, 0x2100}, {&(0x7f0000011400)="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", 0x1a0, 0x2200}, {&(0x7f0000011600)="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", 0x100, 0x2400}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x3400}, {&(0x7f0000011800)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x3800}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x4400}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x4800}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x4c00}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x5000}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x5400}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x5800}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000012300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x6400}], 0x0, &(0x7f0000012800))

08:33:39 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="010059900100000018000000", @ANYRES32=r0, @ANYBLOB="0000100000000000f29c0000"])
r1 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x20)
r2 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
fdatasync(r2)

08:33:39 executing program 0:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
fstatfs(r0, &(0x7f0000000100)=""/246)

08:33:39 executing program 4:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000080)=@loop={'/dev/loop', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='cgroup\x00', 0x0, 0x0)

[  106.981352] loop2: detected capacity change from 0 to 512
[  107.007213] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.035739] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
08:33:39 executing program 4:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000080)=@loop={'/dev/loop', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='cgroup\x00', 0x0, 0x0)

08:33:39 executing program 7:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8000, 0x0, 0x3, 0x0)

08:33:39 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)=ANY=[@ANYBLOB="010059900100000018000000", @ANYRES32=r0, @ANYBLOB="0000100000000000f29c0000"])
r1 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x20)
r2 = memfd_create(&(0x7f0000000000)=':^/\x00', 0x0)
fdatasync(r2)

08:33:39 executing program 0:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
fstatfs(r0, &(0x7f0000000100)=""/246)

08:33:39 executing program 3:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x16, &(0x7f0000000140), 0x4)

08:33:39 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1b, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35333334383534323200"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000dced220ba9804d58a8dffc387fa17f8a010000000c00000000000000d7f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010500)="ffffffff07000000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d7f4655fd7f4655fd7f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd8f4655fd8f4655f00000000000004000200000000000000050000000d00"/64, 0x40, 0x1500}, {&(0x7f0000010f00)="20000000181166091811660900000000d7f4655f00"/32, 0x20, 0x1580}, {&(0x7f0000011000)="c0410000002c0000d7f4655fd7f4655fd7f4655f00000000000002001600000000000000000000000e0000000f000000100000001100000012000000130000001400000015000000160000001700000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d7f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x1e00}, {&(0x7f0000011100)="ed4100003c000000d8f4655fd8f4655fd8f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000007782994400000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011200)="ed8100001a040000d8f4655fd8f4655fd8f4655f0000000000000100040000000000000001000000190000001a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000567a372d00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0xa0, 0x2000}, {&(0x7f0000011300)="ffa1000026000000d8f4655fd8f4655fd8f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3533333438353432322f66696c65302f66696c653000000000000000000000000000000000000000000000ae16d32f00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0xa0, 0x2100}, {&(0x7f0000011400)="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", 0x1a0, 0x2200}, {&(0x7f0000011600)="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", 0x100, 0x2400}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x3400}, {&(0x7f0000011800)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x3800}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x4400}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x4800}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x4c00}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x5000}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x5400}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x5800}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000012300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x6400}], 0x0, &(0x7f0000012800))

08:33:39 executing program 1:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0xb3})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

08:33:39 executing program 5:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000ac0)='/sys/module/random', 0x0, 0x0)
r1 = io_uring_setup(0x6b4e, &(0x7f0000000200))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000280)=r0, 0x1)

[  107.082092] loop2: detected capacity change from 0 to 512
08:33:39 executing program 0:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
fstatfs(r0, &(0x7f0000000100)=""/246)

[  107.090146] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI
[  107.091095] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  107.091744] CPU: 1 UID: 0 PID: 4058 Comm: syz-executor.2 Tainted: G        W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  107.092714] Tainted: [W]=WARN
[  107.092969] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  107.093637] RIP: 0010:__queue_work+0x202/0x1240
[  107.094050] Code: 48 8b 6d 00 e8 4f ee 79 03 31 ff 41 89 c5 89 c6 e8 c3 02 32 00 45 85 ed 0f 85 e1 05 00 00 e8 85 07 32 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 a0 0e 00 00 4c 8b 75 00 48 89 df 4c 89 34 24
[  107.095518] RSP: 0018:ffff8880450cf398 EFLAGS: 00010056
[  107.095955] RAX: 0000000000000000 RBX: ffff888041145018 RCX: ffffc90001604000
[  107.096534] RDX: 0000000000040000 RSI: ffffffff8141ef2b RDI: 0000000000000005
[  107.097114] RBP: 0000000000000000 R08: 0000000000000001 R09: fffffbfff0f128f4
[  107.097677] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  107.098258] R13: 0000000000000001 R14: 0000000000000001 R15: ffff88804542a800
[  107.098826] FS:  00007f54165ed700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  107.099462] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  107.099923] CR2: 00007f56ec309018 CR3: 00000000410d5000 CR4: 0000000000350ef0
[  107.100489] Call Trace:
[  107.100700]  <TASK>
[  107.100886]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  107.101269]  queue_work_on+0xd0/0xe0
[  107.101575]  loop_queue_rq+0x5c8/0x1180
[  107.101916]  __blk_mq_issue_directly+0xd5/0x260
[  107.102302]  ? __pfx___blk_mq_issue_directly+0x10/0x10
[  107.102724]  ? bdev_count_inflight_rw.part.0+0x5f/0x380
[  107.103151]  blk_mq_request_issue_directly+0x11c/0x1e0
[  107.103571]  blk_mq_issue_direct+0x192/0x640
[  107.103927]  blk_mq_dispatch_queue_requests+0x4b0/0x7c0
[  107.104352]  blk_mq_flush_plug_list+0x1ec/0x5b0
[  107.104729]  ? read_tsc+0x9/0x20
[  107.105011]  ? ktime_get+0x16d/0x270
[  107.105320]  ? trace_block_plug+0x149/0x1b0
[  107.105670]  ? blk_add_rq_to_plug+0x234/0x550
[  107.106048]  ? __pfx_blk_mq_flush_plug_list+0x10/0x10
[  107.106458]  ? blk_mq_submit_bio+0x4fd/0x2220
[  107.106819]  __blk_flush_plug+0x25c/0x460
[  107.107153]  ? __pfx___blk_flush_plug+0x10/0x10
[  107.107525]  ? bio_associate_blkg_from_css+0x4fe/0x1380
[  107.107953]  __submit_bio+0x480/0x5b0
[  107.108259]  ? __pfx___submit_bio+0x10/0x10
[  107.108606]  ? read_tsc+0x9/0x20
[  107.108880]  ? ktime_get+0x16d/0x270
[  107.109182]  submit_bio_noacct_nocheck+0x68e/0xcb0
[  107.109572]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[  107.110025]  submit_bio_noacct+0x359/0x1350
[  107.110379]  ? __pfx_end_buffer_read_sync+0x10/0x10
[  107.110783]  ext4_read_bh+0x15a/0x2e0
[  107.111094]  ext4_read_bh_lock+0x7a/0xd0
[  107.111423]  ext4_sb_bread_unmovable+0x172/0x260
[  107.111806]  ext4_fill_super+0x662/0xba20
[  107.112151]  ? wake_bit_function+0x210/0x240
[  107.112513]  ? snprintf+0xbe/0x100
[  107.112807]  ? __pfx_snprintf+0x10/0x10
[  107.113133]  ? __pfx_ext4_fill_super+0x10/0x10
[  107.113510]  ? find_held_lock+0x2b/0x80
[  107.113854]  ? setup_bdev_super+0x2ed/0x6e0
[  107.114215]  ? set_blocksize+0x1b4/0x470
[  107.114542]  ? lock_release+0xc8/0x290
[  107.114857]  ? sb_set_blocksize+0x177/0x1c0
[  107.115199]  ? setup_bdev_super+0x31f/0x6e0
[  107.115548]  get_tree_bdev_flags+0x38a/0x620
[  107.115901]  ? __pfx_ext4_fill_super+0x10/0x10
[  107.116271]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  107.116662]  ? cap_capable+0xdb/0x3b0
[  107.116974]  ? security_capable+0x2f/0x90
[  107.117309]  vfs_get_tree+0x93/0x340
[  107.117615]  path_mount+0x132d/0x1dd0
[  107.117943]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  107.118364]  ? __pfx_path_mount+0x10/0x10
[  107.118699]  ? kmem_cache_free+0x2a1/0x540
[  107.119037]  ? putname.part.0+0x11b/0x160
[  107.119376]  ? getname_flags.part.0+0x1c6/0x540
[  107.119755]  ? putname.part.0+0x11b/0x160
[  107.120092]  __x64_sys_mount+0x27b/0x300
[  107.120419]  ? __pfx___x64_sys_mount+0x10/0x10
[  107.120787]  do_syscall_64+0xbf/0x360
[  107.121098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.121510] RIP: 0033:0x7f541907904a
[  107.121820] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  107.123260] RSP: 002b:00007f54165ecfa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  107.123905] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f541907904a
[  107.124473] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f54165ed000
[  107.125036] RBP: 00007f54165ed040 R08: 00007f54165ed040 R09: 0000000020000000
[  107.125608] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[  107.126198] R13: 0000000020000100 R14: 00007f54165ed000 R15: 0000000020012800
[  107.126769]  </TASK>
[  107.126963] Modules linked in:
[  107.127231] ---[ end trace 0000000000000000 ]---
[  107.127606] RIP: 0010:__queue_work+0x202/0x1240
[  107.127986] Code: 48 8b 6d 00 e8 4f ee 79 03 31 ff 41 89 c5 89 c6 e8 c3 02 32 00 45 85 ed 0f 85 e1 05 00 00 e8 85 07 32 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 a0 0e 00 00 4c 8b 75 00 48 89 df 4c 89 34 24
[  107.129410] RSP: 0018:ffff8880450cf398 EFLAGS: 00010056
[  107.129855] RAX: 0000000000000000 RBX: ffff888041145018 RCX: ffffc90001604000
[  107.130421] RDX: 0000000000040000 RSI: ffffffff8141ef2b RDI: 0000000000000005
[  107.130982] RBP: 0000000000000000 R08: 0000000000000001 R09: fffffbfff0f128f4
[  107.131550] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  107.132119] R13: 0000000000000001 R14: 0000000000000001 R15: ffff88804542a800
[  107.132687] FS:  00007f54165ed700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  107.133327] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  107.133805] CR2: 00007f56ec309018 CR3: 00000000410d5000 CR4: 0000000000350ef0
[  107.134377] note: syz-executor.2[4058] exited with irqs disabled
[  107.135346] note: syz-executor.2[4058] exited with preempt_count 1
[  107.136265] ------------[ cut here ]------------
[  107.136742] WARNING: kernel/exit.c:898 at do_exit+0x1c36/0x2970, CPU#1: syz-executor.2/4058
[  107.137415] Modules linked in:
[  107.137766] CPU: 1 UID: 0 PID: 4058 Comm: syz-executor.2 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  107.138824] Tainted: [D]=DIE, [W]=WARN
[  107.139137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  107.139883] RIP: 0010:do_exit+0x1c36/0x2970
[  107.140236] Code: 96 0a 00 00 c7 43 18 00 00 00 00 e9 21 e6 ff ff e8 ef b3 38 00 bf 02 24 00 00 e8 f5 ab 0b 00 e9 41 ff ff ff e8 db b3 38 00 90 <0f> 0b 90 e9 87 e4 ff ff e8 cd b3 38 00 4c 89 e6 bf 05 06 00 00 e8
[  107.141696] RSP: 0018:ffff8880450cfe40 EFLAGS: 00010216
[  107.142140] RAX: 000000000003e815 RBX: 0000000000000200 RCX: ffffc90001604000
[  107.142725] RDX: 0000000000040000 RSI: ffffffff813b42d5 RDI: ffff8880445948e8
[  107.143291] RBP: ffff888044593700 R08: 0000000000000001 R09: fffffbfff0f126d8
[  107.143873] R10: 0000000000000200 R11: 0000000000000001 R12: 000000000000000b
[  107.144445] R13: 0000000000002710 R14: dffffc0000000000 R15: 0000000000000000
[  107.145030] FS:  00007f54165ed700(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  107.145681] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  107.146163] CR2: 00007f56ec309018 CR3: 00000000410d5000 CR4: 0000000000350ef0
[  107.146757] Call Trace:
[  107.146967]  <TASK>
[  107.147156]  ? _printk+0xbe/0xf0
[  107.147443]  ? __pfx__printk+0x10/0x10
[  107.147785]  ? __pfx_do_exit+0x10/0x10
[  107.148302]  make_task_dead+0x174/0x3b0
[  107.148663]  ? do_syscall_64+0xbf/0x360
[  107.148990]  rewind_stack_and_make_dead+0x16/0x20
[  107.149391] RIP: 0033:0x7f541907904a
[  107.149838] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  107.151275] RSP: 002b:00007f54165ecfa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  107.151892] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f541907904a
[  107.152459] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f54165ed000
[  107.153039] RBP: 00007f54165ed040 R08: 00007f54165ed040 R09: 0000000020000000
[  107.153616] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[  107.154453] R13: 0000000020000100 R14: 00007f54165ed000 R15: 0000000020012800
[  107.155134]  </TASK>
[  107.155364] irq event stamp: 540
[  107.155747] hardirqs last  enabled at (539): [<ffffffff816263b7>] ktime_get+0x1c7/0x270
[  107.156796] hardirqs last disabled at (540): [<ffffffff84be30a2>] _raw_spin_lock_irq+0x42/0x50
[  107.157840] softirqs last  enabled at (458): [<ffffffff812c76d9>] kernel_fpu_end+0x59/0x70
[  107.158618] softirqs last disabled at (456): [<ffffffff812c8817>] kernel_fpu_begin_mask+0x1b7/0x290
[  107.159426] ---[ end trace 0000000000000000 ]---
[  107.159873] BUG: sleeping function called from invalid context at ./include/linux/percpu-rwsem.h:51
[  107.160703] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 4058, name: syz-executor.2
[  107.161449] preempt_count: 0, expected: 0
08:33:39 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r0)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x1e, r2, r0, r1, 0x0)

[  107.161869] RCU nest depth: 2, expected: 0
[  107.162283] INFO: lockdep is turned off.
[  107.162664] CPU: 1 UID: 0 PID: 4058 Comm: syz-executor.2 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  107.162685] Tainted: [D]=DIE, [W]=WARN
[  107.162689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  107.162695] Call Trace:
[  107.162699]  <TASK>
[  107.162703]  dump_stack_lvl+0xfa/0x120
[  107.162728]  __might_resched+0x2f3/0x510
[  107.162741]  exit_signals+0x25/0x940
[  107.162760]  do_exit+0x2db/0x2970
[  107.162773]  ? _printk+0xbe/0xf0
[  107.162785]  ? __pfx__printk+0x10/0x10
[  107.162799]  ? __pfx_do_exit+0x10/0x10
[  107.162814]  make_task_dead+0x174/0x3b0
[  107.162827]  ? do_syscall_64+0xbf/0x360
[  107.162838]  rewind_stack_and_make_dead+0x16/0x20
[  107.162853] RIP: 0033:0x7f541907904a
[  107.162862] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  107.162873] RSP: 002b:00007f54165ecfa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  107.162884] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f541907904a
[  107.162892] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f54165ed000
[  107.162899] RBP: 00007f54165ed040 R08: 00007f54165ed040 R09: 0000000020000000
[  107.162907] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[  107.162914] R13: 0000000020000100 R14: 00007f54165ed000 R15: 0000000020012800
[  107.162925]  </TASK>
08:33:39 executing program 1:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0xb3})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

08:33:39 executing program 3:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x16, &(0x7f0000000140), 0x4)

08:33:39 executing program 0:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0xb3})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

08:33:39 executing program 4:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000080)=@loop={'/dev/loop', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='cgroup\x00', 0x0, 0x0)

[  107.228521] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#2] SMP KASAN NOPTI
[  107.229426] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  107.230049] CPU: 0 UID: 0 PID: 4072 Comm: syz-executor.4 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  107.230986] Tainted: [D]=DIE, [W]=WARN
[  107.231292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  107.231940] RIP: 0010:perf_tp_event+0x175/0xe70
[  107.232325] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  107.233752] RSP: 0018:ffff888045acf780 EFLAGS: 00010012
[  107.234181] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: ffffc90006a2e000
[  107.234739] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[  107.235300] RBP: ffff888045acf9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16550
[  107.235862] R10: 0000000000000000 R11: ffff88806ce37018 R12: dffffc0000000000
[  107.236427] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[  107.236992] FS:  00007fbac63f7700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  107.237624] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  107.238091] CR2: 0000000000000000 CR3: 000000004247a000 CR4: 0000000000350ef0
[  107.238653] Call Trace:
[  107.238861]  <TASK>
[  107.239049]  ? __pfx_perf_tp_event+0x10/0x10
[  107.239407]  ? lock_acquire+0x18c/0x2f0
[  107.239734]  ? lock_release+0x1c7/0x290
[  107.240055]  ? __is_insn_slot_addr+0x140/0x290
[  107.240428]  ? kernel_text_address+0x5b/0xc0
[  107.240787]  ? __kernel_text_address+0xd/0x40
[  107.241150]  ? unwind_get_return_address+0x59/0xa0
[  107.241551]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  107.242004]  ? arch_stack_walk+0x9c/0xf0
[  107.242331]  ? kvm_sched_clock_read+0x16/0x30
[  107.242699]  ? sched_clock+0x37/0x60
[  107.243004]  ? sched_clock_cpu+0x6c/0x4e0
[  107.243339]  ? stack_trace_save+0x8e/0xc0
[  107.243673]  ? trace_pelt_se_tp+0xdf/0x130
[  107.244015]  ? perf_trace_run_bpf_submit+0xef/0x180
[  107.244417]  ? place_entity+0x300/0x410
[  107.244738]  perf_trace_run_bpf_submit+0xef/0x180
[  107.245129]  perf_trace_preemptirq_template+0x259/0x430
[  107.245556]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  107.246026]  ? check_preempt_wakeup_fair+0x406/0x950
[  107.246435]  ? wakeup_preempt+0x140/0x2a0
[  107.246767]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[  107.247174]  trace_irq_enable.constprop.0+0xa6/0x100
[  107.247577]  trace_hardirqs_on+0x26/0x40
[  107.247903]  _raw_spin_unlock_irqrestore+0x2c/0x50
[  107.248297]  try_to_wake_up+0x8ae/0x11d0
[  107.248627]  ? __pfx_try_to_wake_up+0x10/0x10
[  107.248989]  ? plist_del+0x122/0x270
[  107.249294]  ? __futex_unqueue+0xda/0x1c0
[  107.249630]  wake_up_q+0xa1/0x130
[  107.249923]  futex_wake+0x47e/0x540
[  107.250223]  ? __pfx_futex_wake+0x10/0x10
[  107.250559]  ? copy_siginfo_to_user+0xb9/0xd0
[  107.250919]  ? __pfx_signal_setup_done+0x10/0x10
[  107.251303]  do_futex+0x26d/0x370
[  107.251594]  ? __pfx_do_futex+0x10/0x10
[  107.251913]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  107.252326]  ? arch_do_signal_or_restart+0x204/0x790
[  107.252737]  __x64_sys_futex+0x1c9/0x4d0
[  107.253064]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  107.253530]  ? __pfx___x64_sys_futex+0x10/0x10
[  107.253904]  ? lock_mm_and_find_vma+0xaa/0x6f0
[  107.254276]  do_syscall_64+0xbf/0x360
[  107.254589]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.254999] RIP: 0033:0x7fbac8e81b19
[  107.255295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  107.256721] RSP: 002b:00007fbac63f7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  107.257319] RAX: ffffffffffffffda RBX: 00007fbac8f94f68 RCX: 00007fbac8e81b19
[  107.257890] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbac8f94f6c
[  107.258449] RBP: 00007fbac8f94f60 R08: 000000000000000e R09: 0000000000000000
[  107.259010] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fbac8f94f6c
[  107.259565] R13: 00007fff9901422f R14: 00007fbac63f7300 R15: 0000000000022000
[  107.260131]  </TASK>
[  107.260321] Modules linked in:
[  107.260584] ---[ end trace 0000000000000000 ]---
[  107.260956] RIP: 0010:__queue_work+0x202/0x1240
[  107.261334] Code: 48 8b 6d 00 e8 4f ee 79 03 31 ff 41 89 c5 89 c6 e8 c3 02 32 00 45 85 ed 0f 85 e1 05 00 00 e8 85 07 32 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 a0 0e 00 00 4c 8b 75 00 48 89 df 4c 89 34 24
[  107.262769] RSP: 0018:ffff8880450cf398 EFLAGS: 00010056
[  107.263190] RAX: 0000000000000000 RBX: ffff888041145018 RCX: ffffc90001604000
[  107.263756] RDX: 0000000000040000 RSI: ffffffff8141ef2b RDI: 0000000000000005
[  107.264319] RBP: 0000000000000000 R08: 0000000000000001 R09: fffffbfff0f128f4
[  107.264881] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  107.265441] R13: 0000000000000001 R14: 0000000000000001 R15: ffff88804542a800
[  107.266010] FS:  00007fbac63f7700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  107.266638] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  107.267099] CR2: 0000000000000000 CR3: 000000004247a000 CR4: 0000000000350ef0
[  107.267662] note: syz-executor.4[4072] exited with irqs disabled
[  107.268556] note: syz-executor.4[4072] exited with preempt_count 3
[  107.397587] kmemleak: Automatic memory scanning thread ended
08:33:40 executing program 3:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x16, &(0x7f0000000140), 0x4)

08:33:40 executing program 7:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8000, 0x0, 0x3, 0x0)

08:33:40 executing program 0:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0xb3})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

08:33:40 executing program 5:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000ac0)='/sys/module/random', 0x0, 0x0)
r1 = io_uring_setup(0x6b4e, &(0x7f0000000200))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000280)=r0, 0x1)

08:33:40 executing program 1:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0xb3})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

08:33:40 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r0)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x1e, r2, r0, r1, 0x0)

08:33:40 executing program 4:
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000080)=@loop={'/dev/loop', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='cgroup\x00', 0x0, 0x0)

08:33:40 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1b, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35333334383534323200"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000dced220ba9804d58a8dffc387fa17f8a010000000c00000000000000d7f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010500)="ffffffff07000000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d7f4655fd7f4655fd7f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd8f4655fd8f4655f00000000000004000200000000000000050000000d00"/64, 0x40, 0x1500}, {&(0x7f0000010f00)="20000000181166091811660900000000d7f4655f00"/32, 0x20, 0x1580}, {&(0x7f0000011000)="c0410000002c0000d7f4655fd7f4655fd7f4655f00000000000002001600000000000000000000000e0000000f000000100000001100000012000000130000001400000015000000160000001700000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d7f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x1e00}, {&(0x7f0000011100)="ed4100003c000000d8f4655fd8f4655fd8f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000007782994400000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011200)="ed8100001a040000d8f4655fd8f4655fd8f4655f0000000000000100040000000000000001000000190000001a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000567a372d00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0xa0, 0x2000}, {&(0x7f0000011300)="ffa1000026000000d8f4655fd8f4655fd8f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3533333438353432322f66696c65302f66696c653000000000000000000000000000000000000000000000ae16d32f00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0xa0, 0x2100}, {&(0x7f0000011400)="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", 0x1a0, 0x2200}, {&(0x7f0000011600)="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", 0x100, 0x2400}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x3400}, {&(0x7f0000011800)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x3800}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x4400}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x4800}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x4c00}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x5000}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x5400}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x5800}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000012300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x6400}], 0x0, &(0x7f0000012800))

08:33:40 executing program 5:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000ac0)='/sys/module/random', 0x0, 0x0)
r1 = io_uring_setup(0x6b4e, &(0x7f0000000200))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000280)=r0, 0x1)

08:33:40 executing program 0:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0xb3})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

08:33:40 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1b, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35333334383534323200"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000dced220ba9804d58a8dffc387fa17f8a010000000c00000000000000d7f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010500)="ffffffff07000000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d7f4655fd7f4655fd7f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd8f4655fd8f4655f00000000000004000200000000000000050000000d00"/64, 0x40, 0x1500}, {&(0x7f0000010f00)="20000000181166091811660900000000d7f4655f00"/32, 0x20, 0x1580}, {&(0x7f0000011000)="c0410000002c0000d7f4655fd7f4655fd7f4655f00000000000002001600000000000000000000000e0000000f000000100000001100000012000000130000001400000015000000160000001700000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d7f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x1e00}, {&(0x7f0000011100)="ed4100003c000000d8f4655fd8f4655fd8f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000007782994400000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011200)="ed8100001a040000d8f4655fd8f4655fd8f4655f0000000000000100040000000000000001000000190000001a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000567a372d00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0xa0, 0x2000}, {&(0x7f0000011300)="ffa1000026000000d8f4655fd8f4655fd8f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3533333438353432322f66696c65302f66696c653000000000000000000000000000000000000000000000ae16d32f00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0xa0, 0x2100}, {&(0x7f0000011400)="ed8100000a000000d8f4655fd8f4655fd8f4655f000000000000010000000000000000100100000073797a6b616c6c6572730000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000689b39ec00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000000002ea040700000000000000000000000000006461746106015400000000000600000000000000786174747231000006014c000000000006000000000000007861747472320000000000000000000078617474723200007861747472310000ed81000028230000d8f4655fd8f4655fd8f4655f00000000000002001200000000000000010000001b0000001c0000001d0000001e0000001f000000200000002100000022000000230000000000000000000000000000000000000000000000000000008838fb5400000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0x1a0, 0x2200}, {&(0x7f0000011600)="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", 0x100, 0x2400}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x3400}, {&(0x7f0000011800)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x3800}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x4400}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x4800}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x4c00}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x5000}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x5400}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x5800}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000012300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x6400}], 0x0, &(0x7f0000012800))

08:33:40 executing program 7:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8000, 0x0, 0x3, 0x0)

08:33:40 executing program 1:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0xb3})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

08:33:40 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r0)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x1e, r2, r0, r1, 0x0)

08:33:40 executing program 5:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000ac0)='/sys/module/random', 0x0, 0x0)
r1 = io_uring_setup(0x6b4e, &(0x7f0000000200))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000280)=r0, 0x1)

08:33:40 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r0)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x1e, r2, r0, r1, 0x0)

08:33:40 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r0)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x1e, r2, r0, r1, 0x0)

08:33:40 executing program 7:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8000, 0x0, 0x3, 0x0)

08:33:40 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r0)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x1e, r2, r0, r1, 0x0)

08:33:40 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r0)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x1e, r2, r0, r1, 0x0)

08:33:40 executing program 4:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000ac0)='/sys/module/random', 0x0, 0x0)
r1 = io_uring_setup(0x6b4e, &(0x7f0000000200))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000280)=r0, 0x1)

08:33:40 executing program 1:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000ac0)='/sys/module/random', 0x0, 0x0)
r1 = io_uring_setup(0x6b4e, &(0x7f0000000200))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000280)=r0, 0x1)

08:33:40 executing program 7:
syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={[{@mpol={'mpol', 0x3d, {'default', '=relative', @val={0x3a, [0x34, 0x2d, 0x4e]}}}}]})

08:33:40 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000600), 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000140)={0x1f00, 0x0, 0x0})

08:33:40 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r0)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x1e, r2, r0, r1, 0x0)

08:33:40 executing program 5:
futex(0x0, 0x2, 0x0, 0x0, 0x0, 0x0)

[  108.388760] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#3] SMP KASAN NOPTI
[  108.389729] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  108.390429] CPU: 1 UID: 0 PID: 4120 Comm: syz-executor.0 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  108.391525] Tainted: [D]=DIE, [W]=WARN
[  108.391869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  108.392602] RIP: 0010:perf_tp_event+0x175/0xe70
[  108.393037] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  108.394655] RSP: 0018:ffff888017247780 EFLAGS: 00010012
[  108.395134] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[  108.395762] RDX: ffff888043ab0000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[  108.396390] RBP: ffff8880172479f0 R08: ffff88806cf31340 R09: ffffe8ffffd16568
[  108.397019] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  108.397653] R13: 0000000000000014 R14: ffff88806cf31340 R15: dffffc0000000000
[  108.398298] FS:  000055557a941400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  108.399008] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  108.399530] CR2: 0000001b2d121000 CR3: 00000000411ef000 CR4: 0000000000350ef0
[  108.400164] Call Trace:
[  108.400397]  <TASK>
[  108.400606]  ? lock_acquire+0x18c/0x2f0
[  108.400973]  ? __pfx_perf_tp_event+0x10/0x10
[  108.401380]  ? trace_sched_exit_tp+0xbf/0x100
[  108.401808]  ? __schedule+0xe91/0x3590
[  108.402172]  ? lock_acquire+0x18c/0x2f0
[  108.402533]  ? __pfx___schedule+0x10/0x10
[  108.402917]  ? lock_release+0x1c7/0x290
[  108.403280]  ? lock_acquire+0x18c/0x2f0
[  108.403641]  ? lock_acquire+0x18c/0x2f0
[  108.404001]  ? lock_release+0x1c7/0x290
[  108.404365]  ? css_rstat_updated+0x1b8/0x4d0
[  108.404772]  ? __pfx_css_rstat_updated+0x10/0x10
[  108.405205]  ? trace_pelt_se_tp+0xdf/0x130
[  108.405592]  ? perf_trace_run_bpf_submit+0xef/0x180
[  108.406057]  perf_trace_run_bpf_submit+0xef/0x180
[  108.406502]  perf_trace_preemptirq_template+0x259/0x430
[  108.406984]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  108.407510]  ? check_preempt_wakeup_fair+0x406/0x950
[  108.407967]  ? wakeup_preempt+0x140/0x2a0
[  108.408344]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[  108.408813]  trace_irq_enable.constprop.0+0xa6/0x100
[  108.409268]  trace_hardirqs_on+0x26/0x40
[  108.409639]  _raw_spin_unlock_irqrestore+0x2c/0x50
[  108.410098]  try_to_wake_up+0x8ae/0x11d0
[  108.410477]  ? __pfx_try_to_wake_up+0x10/0x10
[  108.410888]  ? plist_del+0x122/0x270
[  108.411233]  ? __futex_unqueue+0xda/0x1c0
[  108.411608]  wake_up_q+0xa1/0x130
[  108.411936]  futex_wake+0x47e/0x540
[  108.412279]  ? __pfx_futex_wake+0x10/0x10
[  108.412660]  ? __call_rcu_common.constprop.0+0x4c1/0x960
[  108.413149]  ? trace_irq_enable.constprop.0+0xc2/0x100
[  108.413620]  ? __call_rcu_common.constprop.0+0x4c1/0x960
[  108.414120]  do_futex+0x26d/0x370
[  108.414442]  ? __pfx_do_futex+0x10/0x10
[  108.414810]  ? __fput+0x67b/0xb50
[  108.415143]  __x64_sys_futex+0x1c9/0x4d0
[  108.415515]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  108.416035]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  108.416466]  ? __pfx___x64_sys_futex+0x10/0x10
[  108.416884]  ? lock_release+0x1c7/0x290
[  108.417246]  ? do_raw_spin_unlock+0x53/0x220
[  108.417652]  do_syscall_64+0xbf/0x360
[  108.417980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.418365] RIP: 0033:0x7efec23f5b19
[  108.418641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  108.419958] RSP: 002b:00007ffe940c6588 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  108.420511] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efec23f5b19
[  108.421031] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efec2508f68
[  108.421550] RBP: 00007efec2508f60 R08: 0000001b2cd20e14 R09: 0000000000000000
[  108.422080] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efec250d098
[  108.422601] R13: 00007ffe940c6690 R14: 00007efec2508f60 R15: 000000000001a6dd
[  108.423130]  </TASK>
[  108.423308] Modules linked in:
[  108.423551] ---[ end trace 0000000000000000 ]---
[  108.423556] BUG: unable to handle page fault for address: ffffed10212c999e
[  108.423896] RIP: 0010:__queue_work+0x202/0x1240
[  108.424621] #PF: supervisor read access in kernel mode
[  108.424960] Code: 48 8b 6d 00 e8 4f ee 79 03 31 ff 41 89 c5 89 c6 e8 c3 02 32 00 45 85 ed 0f 85 e1 05 00 00 e8 85 07 32 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 a0 0e 00 00 4c 8b 75 00 48 89 df 4c 89 34 24
[  108.425460] #PF: error_code(0x0000) - not-present page
[  108.426778] RSP: 0018:ffff8880450cf398 EFLAGS: 00010056
[  108.427283] PGD 7ffd4067 P4D 7ffd4067 
[  108.427676] RAX: 0000000000000000 RBX: ffff888041145018 RCX: ffffc90001604000
[  108.427679] PUD 7ffd3067 
[  108.427687] RDX: 0000000000040000 RSI: ffffffff8141ef2b RDI: 0000000000000005
[  108.428056] PMD 0 
[  108.428571] RBP: 0000000000000000 R08: 0000000000000001 R09: fffffbfff0f128f4
[  108.428842] 
[  108.429357] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  108.429573] Oops: Oops: 0000 [#4] SMP KASAN NOPTI
[  108.430095] R13: 0000000000000001 R14: 0000000000000001 R15: ffff88804542a800
[  108.430275] CPU: 0 UID: 0 PID: 4126 Comm: syz-executor.3 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  108.430823] FS:  000055557a941400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  108.431299] Tainted: [D]=DIE, [W]=WARN
[  108.431852] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  108.433027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  108.433652] CR2: 0000001b2d121000 CR3: 00000000411ef000 CR4: 0000000000350ef0
[  108.434045] RIP: 0010:perf_tp_event+0x175/0xe70
[  108.434503] note: syz-executor.0[4120] exited with irqs disabled
[  108.435317] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  108.438742] RSP: 0018:ffff88804608f780 EFLAGS: 00010012
[  108.439279] RAX: 1ffff110212c999e RBX: ffff88810964cb00 RCX: ffffc90003413000
[  108.439989] RDX: 0000000000040000 RSI: ffffffff8189a4e7 RDI: ffff88810964ccf0
[  108.440703] RBP: ffff88804608f9f0 R08: ffff88806ce31340 R09: ffffe8ffffc16568
[  108.441417] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  108.442144] R13: 0000000000000014 R14: ffff88806ce31340 R15: dffffc0000000000
[  108.442856] FS:  00007f87efd02700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  108.443660] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  108.444239] CR2: ffffed10212c999e CR3: 00000000100c3000 CR4: 0000000000350ef0
[  108.444951] Call Trace:
[  108.445218]  <TASK>
[  108.445446]  ? perf_pmu_nop_int+0x9/0x10
[  108.445871]  ? merge_sched_in+0xcb/0x1810
[  108.446297]  ? __pfx_perf_tp_event+0x10/0x10
[  108.446751]  ? __pfx_visit_groups_merge.constprop.0.isra.0+0x10/0x10
[  108.447404]  ? kvm_sched_clock_read+0x16/0x30
[  108.447870]  ? local_clock_noinstr+0xf/0xc0
[  108.448323]  ? perf_trace_run_bpf_submit+0xef/0x180
[  108.448832]  ? __pfx_ctx_sched_in+0x10/0x10
[  108.449262]  ? perf_trace_run_bpf_submit+0xef/0x180
[  108.449778]  ? css_rstat_updated+0x1b8/0x4d0
[  108.450246]  ? __pfx_css_rstat_updated+0x10/0x10
[  108.450728]  ? perf_trace_preemptirq_template+0x259/0x430
[  108.451284]  ? perf_trace_run_bpf_submit+0xef/0x180
[  108.451794]  perf_trace_run_bpf_submit+0xef/0x180
[  108.452297]  perf_trace_preemptirq_template+0x259/0x430
[  108.452834]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  108.453423]  ? check_preempt_wakeup_fair+0x406/0x950
[  108.453942]  ? wakeup_preempt+0x140/0x2a0
[  108.454365]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[  108.454883]  trace_irq_enable.constprop.0+0xa6/0x100
[  108.455391]  trace_hardirqs_on+0x26/0x40
[  108.455800]  _raw_spin_unlock_irqrestore+0x2c/0x50
[  108.456305]  try_to_wake_up+0x8ae/0x11d0
[  108.456726]  ? __pfx_try_to_wake_up+0x10/0x10
[  108.457193]  ? plist_del+0x122/0x270
[  108.457578]  ? __futex_unqueue+0xda/0x1c0
[  108.458007]  wake_up_q+0xa1/0x130
[  108.458378]  futex_wake+0x47e/0x540
[  108.458755]  ? __pfx_futex_wake+0x10/0x10
[  108.459183]  ? lock_release+0x1c7/0x290
[  108.459592]  ? lock_release+0x1c7/0x290
[  108.459996]  ? fd_install+0x1f0/0x660
[  108.460385]  do_futex+0x26d/0x370
[  108.460742]  ? __pfx_do_futex+0x10/0x10
[  108.461156]  __x64_sys_futex+0x1c9/0x4d0
[  108.461572]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  108.462199]  ? __pfx___x64_sys_futex+0x10/0x10
[  108.462666]  ? xfd_validate_state+0x55/0x180
[  108.463129]  do_syscall_64+0xbf/0x360
[  108.463515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.464038] RIP: 0033:0x7f87f278cb19
[  108.464421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  108.466252] RSP: 002b:00007f87efd02218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  108.467003] RAX: ffffffffffffffda RBX: 00007f87f289ff68 RCX: 00007f87f278cb19
[  108.467714] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f87f289ff6c
[  108.468427] RBP: 00007f87f289ff60 R08: 000000000000000e R09: 0000000000000000
[  108.469133] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f87f289ff6c
[  108.469848] R13: 00007ffdebfc3d9f R14: 00007f87efd02300 R15: 0000000000022000
[  108.470562]  </TASK>
[  108.470798] Modules linked in:
[  108.471131] CR2: ffffed10212c999e
[  108.471480] ---[ end trace 0000000000000000 ]---
[  108.471482] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000032: 0000 [#5] SMP KASAN NOPTI
[  108.471942] RIP: 0010:__queue_work+0x202/0x1240
[  108.472820] KASAN: null-ptr-deref in range [0x0000000000000190-0x0000000000000197]
[  108.473274] Code: 48 8b 6d 00 e8 4f ee 79 03 31 ff 41 89 c5 89 c6 e8 c3 02 32 00 45 85 ed 0f 85 e1 05 00 00 e8 85 07 32 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 a0 0e 00 00 4c 8b 75 00 48 89 df 4c 89 34 24
[  108.473892] CPU: 1 UID: 0 PID: 4120 Comm: syz-executor.0 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  108.475686] RSP: 0018:ffff8880450cf398 EFLAGS: 00010056
[  108.476617] Tainted: [D]=DIE, [W]=WARN
[  108.477142] RAX: 0000000000000000 RBX: ffff888041145018 RCX: ffffc90001604000
[  108.477447] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  108.478159] RDX: 0000000000040000 RSI: ffffffff8141ef2b RDI: 0000000000000005
[  108.478803] RIP: 0010:perf_tp_event+0x175/0xe70
[  108.479502] RBP: 0000000000000000 R08: 0000000000000001 R09: fffffbfff0f128f4
[  108.479863] Code: ff df 48 89 85 a8 fd ff ff 48 c1 e8 03 4c 01 e0 48 89 85 c8 fd ff ff e8 c9 51 ea ff 48 8d bb f0 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 74 08 3c 03 0f 8e c5 0b 00 00 44 8b ab f0 01
[  108.480561] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  108.482003] RSP: 0018:ffff88806cf08b80 EFLAGS: 00010012
[  108.482700] R13: 0000000000000001 R14: 0000000000000001 R15: ffff88804542a800
[  108.483118] RAX: 0000000000000032 RBX: ffffffffffffffa1 RCX: 0000000000000002
[  108.483829] FS:  00007f87efd02700(0000) GS:ffff8880e55d8000(0000) knlGS:0000000000000000
[  108.484385] RDX: ffff888043ab0000 RSI: ffffffff8189a4e7 RDI: 0000000000000191
[  108.485184] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  108.485737] RBP: ffff88806cf08df0 R08: ffff88806cf313e8 R09: ffffe8ffffd16568
[  108.486312] CR2: ffffed10212c999e CR3: 00000000100c3000 CR4: 0000000000350ef0
[  108.486874] R10: 0000000000000000 R11: ffff888009b0a098 R12: dffffc0000000000
[  108.487584] note: syz-executor.3[4126] exited with irqs disabled
[  108.488143] R13: 0000000000000014 R14: ffff88806cf313e8 R15: dffffc0000000000
[  108.489297] FS:  000055557a941400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  108.489955] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  108.490425] CR2: 0000001b2d121000 CR3: 00000000411ef000 CR4: 0000000000350ef0
[  108.490998] Call Trace:
[  108.491206]  <IRQ>
[  108.491386]  ? __pfx_perf_tp_event+0x10/0x10
[  108.491746]  ? enqueue_task_fair+0xded/0x1e00
[  108.492112]  ? check_preempt_wakeup_fair+0x6e/0x950
[  108.492513]  ? wakeup_preempt+0x140/0x2a0
[  108.492847]  ? lock_release+0x1c7/0x290
[  108.493167]  ? lock_release+0x1c7/0x290
[  108.493489]  ? do_raw_spin_unlock+0x53/0x220
[  108.493866]  ? _raw_spin_unlock_irqrestore+0x22/0x50
[  108.494279]  ? try_to_wake_up+0x8ae/0x11d0
[  108.494624]  ? do_raw_spin_lock+0x123/0x260
[  108.494975]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  108.495355]  ? perf_trace_run_bpf_submit+0xef/0x180
[  108.495756]  perf_trace_run_bpf_submit+0xef/0x180
[  108.496150]  perf_trace_preemptirq_template+0x259/0x430
[  108.496576]  ? read_tsc+0x9/0x20
[  108.496859]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  108.497329]  ? clockevents_program_event+0x135/0x360
[  108.497743]  ? tick_program_event+0xac/0x140
[  108.498118]  ? handle_softirqs+0x16e/0x770
[  108.498471]  trace_irq_enable.constprop.0+0xa6/0x100
[  108.498874]  trace_hardirqs_on+0x26/0x40
[  108.499200]  handle_softirqs+0x16e/0x770
[  108.499538]  __irq_exit_rcu+0xc4/0x100
[  108.499858]  irq_exit_rcu+0x9/0x20
[  108.500149]  sysvec_apic_timer_interrupt+0x70/0x80
[  108.500547]  </IRQ>
[  108.500729]  <TASK>
[  108.500915]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  108.501333] RIP: 0010:make_task_dead+0xa2/0x3b0
[  108.501713] Code: 38 00 85 db 0f 84 21 01 00 00 e8 09 a6 38 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 57 a1 38 00 48 85 db 0f 84 17 01 00 00 <e8> e9 a5 38 00 31 ff 65 8b 1d 60 2f 49 06 81 e3 ff ff ff 7f 89 de
[  108.503169] RSP: 0018:ffff888017247f28 EFLAGS: 00000246
[  108.503595] RAX: 0000000000000001 RBX: ffff888043ab0000 RCX: ffffffff817c3ab6
[  108.504161] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff813b5234
[  108.504721] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[  108.505282] R10: ffffffff8643b457 R11: 3030303030302043 R12: ffff888043ab0000
[  108.505862] R13: 0000000000000000 R14: dffffc0000000032 R15: 0000000000000000
[  108.506429]  ? trace_irq_enable.constprop.0+0x26/0x100
[  108.506848]  ? make_task_dead+0x214/0x3b0
[  108.507190]  ? make_task_dead+0x214/0x3b0
[  108.507525]  ? do_syscall_64+0xbf/0x360
[  108.507847]  rewind_stack_and_make_dead+0x16/0x20
[  108.508241] RIP: 0033:0x7efec23f5b19
[  108.508539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  108.509989] RSP: 002b:00007ffe940c6588 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  108.510583] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efec23f5b19
[  108.511145] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efec2508f68
[  108.511704] RBP: 00007efec2508f60 R08: 0000001b2cd20e14 R09: 0000000000000000
[  108.512266] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efec250d098
[  108.512827] R13: 00007ffe940c6690 R14: 00007efec2508f60 R15: 000000000001a6dd
[  108.513399]  </TASK>
[  108.513589] Modules linked in:
[  108.513866] ---[ end trace 0000000000000000 ]---
[  108.513867] BUG: unable to handle page fault for address: ffffed10212c999e
[  108.514239] RIP: 0010:__queue_work+0x202/0x1240
[  108.514924] #PF: supervisor read access in kernel mode
[  108.515285] Code: 48 8b 6d 00 e8 4f ee 79 03 31 ff 41 89 c5 89 c6 e8 c3 02 32 00 45 85 ed 0f 85 e1 05 00 00 e8 85 07 32 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 a0 0e 00 00 4c 8b 75 00 48 89 df 4c 89 34 24
[  108.515793] #PF: error_code(0x0000) - not-present page
[  108.517225] RSP: 0018:ffff8880450cf398 EFLAGS: 00010056
[  108.517732] PGD 7ffd4067 P4D 7ffd4067 
[  108.518186] RAX: 0000000000000000 RBX: ffff888041145018 RCX: ffffc90001604000
[  108.518188] PUD 7ffd3067 
[  108.518198] RDX: 0000000000040000 RSI: ffffffff8141ef2b RDI: 0000000000000005
[  108.518575] PMD 0 
[  108.519163] RBP: 0000000000000000 R08: 0000000000000001 R09: fffffbfff0f128f4
[  108.519437] 
[  108.520016] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  108.520231] Oops: Oops: 0000 [#6] SMP KASAN NOPTI
[  108.520816] R13: 0000000000000001 R14: 0000000000000001 R15: ffff88804542a800
[  108.520994] CPU: 0 UID: 0 PID: 4126 Comm: syz-executor.3 Tainted: G      D W           6.17.0-rc4-next-20250901 #1 PREEMPT(voluntary) 
[  108.521568] FS:  000055557a941400(0000) GS:ffff8880e56d8000(0000) knlGS:0000000000000000
[  108.522050] Tainted: [D]=DIE, [W]=WARN
[  108.522626] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  108.523798] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  108.524459] CR2: 0000001b2d121000 CR3: 00000000411ef000 CR4: 0000000000350ef0
[  108.524844] RIP: 0010:perf_tp_event+0x175/0xe70
[  108.525325] Kernel panic - not syncing: Fatal exception in interrupt
[  109.612799] Shutting down cpus with NMI
[  109.616716] Kernel Offset: disabled
[  109.617328] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---

VM DIAGNOSIS:
08:33:39  Registers:
info registers vcpu 0
RAX=0000000080000000 RBX=ffff88801a17c400 RCX=ffffffff8175485d RDX=ffff888017f85280
RSI=ffffffff81754875 RDI=0000000000000004 RBP=000000007fff0000 RSP=ffff888016bafdd0
R8 =0000000000000000 R9 =ffffed100342f886 R10=000000007fff0000 R11=0000000000000000
R12=000000007fff0000 R13=dffffc0000000000 R14=000000007fff0000 R15=000000007fff0000
RIP=ffffffff8173f6c7 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f95582918c0 00000000 00000000
GS =0000 ffff8880e55d8000 00000000 00000000
LDT=0000 fffffe2800000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f1f046bc600 CR3=000000000bfd0000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000000000002f002f2e2e2f002e2e XMM01=0000000000000000696c61766e49002f
XMM02=ffffffffffffff0f0e0d0c0b0a090807 XMM03=696e656420737365636341002f737973
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055b32e6d2ca0000055b32e6f8440
XMM06=000055b32e6f846000000003ffffffff XMM07=00000000000000000000000000000000
XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000
XMM10=00000000200000000000000020000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=000000000000006e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff828e5105 RDI=ffffffff88729280 RBP=ffffffff88729240 RSP=ffff88801734f448
R8 =0000000000000000 R9 =ffffed10016ce046 R10=000000000000006e R11=0000000000000001
R12=000000000000006e R13=0000000000000010 R14=ffffffff88729240 R15=ffffffff828e50f0
RIP=ffffffff828e515d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e56d8000 00000000 00000000
LDT=0000 fffffe5800000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fff96bbfff8 CR3=000000003bea4000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000