Warning: Permanently added '[localhost]:47986' (ECDSA) to the list of known hosts. 2023/02/25 11:45:20 fuzzer started 2023/02/25 11:45:21 dialing manager at localhost:41417 syzkaller login: [ 42.941966] cgroup: Unknown subsys name 'net' [ 43.028995] cgroup: Unknown subsys name 'rlimit' 2023/02/25 11:45:42 syscalls: 2217 2023/02/25 11:45:42 code coverage: enabled 2023/02/25 11:45:42 comparison tracing: enabled 2023/02/25 11:45:42 extra coverage: enabled 2023/02/25 11:45:42 setuid sandbox: enabled 2023/02/25 11:45:42 namespace sandbox: enabled 2023/02/25 11:45:42 Android sandbox: enabled 2023/02/25 11:45:42 fault injection: enabled 2023/02/25 11:45:42 leak checking: enabled 2023/02/25 11:45:42 net packet injection: enabled 2023/02/25 11:45:42 net device setup: enabled 2023/02/25 11:45:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2023/02/25 11:45:42 devlink PCI setup: PCI device 0000:00:10.0 is not available 2023/02/25 11:45:42 USB emulation: enabled 2023/02/25 11:45:42 hci packet injection: enabled 2023/02/25 11:45:42 wifi device emulation: enabled 2023/02/25 11:45:42 802.15.4 emulation: enabled 2023/02/25 11:45:43 fetching corpus: 50, signal 31001/32830 (executing program) 2023/02/25 11:45:43 fetching corpus: 100, signal 46929/50415 (executing program) 2023/02/25 11:45:43 fetching corpus: 150, signal 57482/62536 (executing program) 2023/02/25 11:45:43 fetching corpus: 200, signal 67754/74254 (executing program) 2023/02/25 11:45:43 fetching corpus: 250, signal 74193/82121 (executing program) 2023/02/25 11:45:43 fetching corpus: 300, signal 80426/89682 (executing program) 2023/02/25 11:45:43 fetching corpus: 350, signal 86955/97540 (executing program) 2023/02/25 11:45:44 fetching corpus: 400, signal 92825/104661 (executing program) 2023/02/25 11:45:44 fetching corpus: 450, signal 99492/112496 (executing program) 2023/02/25 11:45:44 fetching corpus: 500, signal 102881/117166 (executing program) 2023/02/25 11:45:44 fetching corpus: 550, signal 108882/124282 (executing program) 2023/02/25 11:45:44 fetching corpus: 600, signal 112685/129253 (executing program) 2023/02/25 11:45:44 fetching corpus: 650, signal 115602/133357 (executing program) 2023/02/25 11:45:45 fetching corpus: 700, signal 120071/138839 (executing program) 2023/02/25 11:45:45 fetching corpus: 750, signal 122601/142473 (executing program) 2023/02/25 11:45:45 fetching corpus: 800, signal 125048/146067 (executing program) 2023/02/25 11:45:45 fetching corpus: 850, signal 127694/149837 (executing program) 2023/02/25 11:45:45 fetching corpus: 900, signal 131244/154330 (executing program) 2023/02/25 11:45:45 fetching corpus: 950, signal 133839/157925 (executing program) 2023/02/25 11:45:45 fetching corpus: 1000, signal 137184/162176 (executing program) 2023/02/25 11:45:45 fetching corpus: 1050, signal 141366/167132 (executing program) 2023/02/25 11:45:45 fetching corpus: 1100, signal 143540/170280 (executing program) 2023/02/25 11:45:46 fetching corpus: 1150, signal 146519/174102 (executing program) 2023/02/25 11:45:46 fetching corpus: 1200, signal 148555/177048 (executing program) 2023/02/25 11:45:46 fetching corpus: 1250, signal 150782/180208 (executing program) 2023/02/25 11:45:46 fetching corpus: 1300, signal 152864/183169 (executing program) 2023/02/25 11:45:46 fetching corpus: 1350, signal 154818/186004 (executing program) 2023/02/25 11:45:46 fetching corpus: 1400, signal 156714/188708 (executing program) 2023/02/25 11:45:46 fetching corpus: 1450, signal 158196/191122 (executing program) 2023/02/25 11:45:47 fetching corpus: 1500, signal 160509/194193 (executing program) 2023/02/25 11:45:47 fetching corpus: 1550, signal 162819/197259 (executing program) 2023/02/25 11:45:47 fetching corpus: 1600, signal 164655/199879 (executing program) 2023/02/25 11:45:47 fetching corpus: 1650, signal 166987/202842 (executing program) 2023/02/25 11:45:47 fetching corpus: 1700, signal 168115/204824 (executing program) 2023/02/25 11:45:47 fetching corpus: 1750, signal 169913/207332 (executing program) 2023/02/25 11:45:47 fetching corpus: 1800, signal 171458/209653 (executing program) 2023/02/25 11:45:48 fetching corpus: 1850, signal 172302/211418 (executing program) 2023/02/25 11:45:48 fetching corpus: 1900, signal 173972/213820 (executing program) 2023/02/25 11:45:48 fetching corpus: 1950, signal 175032/215646 (executing program) 2023/02/25 11:45:48 fetching corpus: 2000, signal 176669/217990 (executing program) 2023/02/25 11:45:48 fetching corpus: 2050, signal 178201/220207 (executing program) 2023/02/25 11:45:48 fetching corpus: 2100, signal 179404/222179 (executing program) 2023/02/25 11:45:48 fetching corpus: 2150, signal 180726/224218 (executing program) 2023/02/25 11:45:48 fetching corpus: 2200, signal 182116/226241 (executing program) 2023/02/25 11:45:49 fetching corpus: 2250, signal 184440/228987 (executing program) 2023/02/25 11:45:49 fetching corpus: 2300, signal 185976/231126 (executing program) 2023/02/25 11:45:49 fetching corpus: 2350, signal 186932/232803 (executing program) 2023/02/25 11:45:49 fetching corpus: 2400, signal 188339/234807 (executing program) 2023/02/25 11:45:49 fetching corpus: 2450, signal 189669/236758 (executing program) 2023/02/25 11:45:49 fetching corpus: 2500, signal 190674/238463 (executing program) 2023/02/25 11:45:49 fetching corpus: 2550, signal 191763/240216 (executing program) 2023/02/25 11:45:50 fetching corpus: 2600, signal 192330/241587 (executing program) 2023/02/25 11:45:50 fetching corpus: 2650, signal 193192/243166 (executing program) 2023/02/25 11:45:50 fetching corpus: 2700, signal 194384/244930 (executing program) 2023/02/25 11:45:50 fetching corpus: 2750, signal 195396/246577 (executing program) 2023/02/25 11:45:50 fetching corpus: 2800, signal 196554/248322 (executing program) 2023/02/25 11:45:50 fetching corpus: 2850, signal 197498/249890 (executing program) 2023/02/25 11:45:50 fetching corpus: 2900, signal 198419/251395 (executing program) 2023/02/25 11:45:50 fetching corpus: 2950, signal 199460/253002 (executing program) 2023/02/25 11:45:50 fetching corpus: 3000, signal 200374/254569 (executing program) 2023/02/25 11:45:51 fetching corpus: 3050, signal 200878/255850 (executing program) 2023/02/25 11:45:51 fetching corpus: 3100, signal 201992/257465 (executing program) 2023/02/25 11:45:51 fetching corpus: 3150, signal 202954/258998 (executing program) 2023/02/25 11:45:51 fetching corpus: 3200, signal 203863/260486 (executing program) 2023/02/25 11:45:51 fetching corpus: 3250, signal 204771/261978 (executing program) 2023/02/25 11:45:51 fetching corpus: 3300, signal 206076/263698 (executing program) 2023/02/25 11:45:51 fetching corpus: 3350, signal 207818/265690 (executing program) 2023/02/25 11:45:51 fetching corpus: 3400, signal 208545/267009 (executing program) 2023/02/25 11:45:52 fetching corpus: 3450, signal 209258/268284 (executing program) 2023/02/25 11:45:52 fetching corpus: 3500, signal 210324/269799 (executing program) 2023/02/25 11:45:52 fetching corpus: 3550, signal 210995/271056 (executing program) 2023/02/25 11:45:52 fetching corpus: 3600, signal 211759/272339 (executing program) 2023/02/25 11:45:52 fetching corpus: 3650, signal 212847/273840 (executing program) 2023/02/25 11:45:52 fetching corpus: 3700, signal 213717/275163 (executing program) 2023/02/25 11:45:52 fetching corpus: 3750, signal 214422/276414 (executing program) 2023/02/25 11:45:53 fetching corpus: 3800, signal 215392/277836 (executing program) 2023/02/25 11:45:53 fetching corpus: 3850, signal 216199/279077 (executing program) 2023/02/25 11:45:53 fetching corpus: 3900, signal 217344/280610 (executing program) 2023/02/25 11:45:53 fetching corpus: 3950, signal 217989/281808 (executing program) 2023/02/25 11:45:53 fetching corpus: 4000, signal 218973/283169 (executing program) 2023/02/25 11:45:53 fetching corpus: 4050, signal 219439/284229 (executing program) 2023/02/25 11:45:53 fetching corpus: 4100, signal 220221/285468 (executing program) 2023/02/25 11:45:53 fetching corpus: 4150, signal 221140/286794 (executing program) 2023/02/25 11:45:54 fetching corpus: 4200, signal 221766/287936 (executing program) 2023/02/25 11:45:54 fetching corpus: 4250, signal 222592/289196 (executing program) 2023/02/25 11:45:54 fetching corpus: 4300, signal 223294/290377 (executing program) 2023/02/25 11:45:54 fetching corpus: 4350, signal 224007/291494 (executing program) 2023/02/25 11:45:54 fetching corpus: 4400, signal 224780/292668 (executing program) 2023/02/25 11:45:54 fetching corpus: 4450, signal 225417/293758 (executing program) 2023/02/25 11:45:54 fetching corpus: 4500, signal 226115/294863 (executing program) 2023/02/25 11:45:54 fetching corpus: 4550, signal 226755/295991 (executing program) 2023/02/25 11:45:55 fetching corpus: 4600, signal 227502/297156 (executing program) 2023/02/25 11:45:55 fetching corpus: 4650, signal 228097/298168 (executing program) 2023/02/25 11:45:55 fetching corpus: 4700, signal 228720/299204 (executing program) 2023/02/25 11:45:55 fetching corpus: 4750, signal 229199/300176 (executing program) 2023/02/25 11:45:55 fetching corpus: 4800, signal 230042/301313 (executing program) 2023/02/25 11:45:55 fetching corpus: 4850, signal 230825/302439 (executing program) 2023/02/25 11:45:55 fetching corpus: 4900, signal 231481/303490 (executing program) 2023/02/25 11:45:55 fetching corpus: 4950, signal 232063/304480 (executing program) 2023/02/25 11:45:55 fetching corpus: 5000, signal 232959/305655 (executing program) 2023/02/25 11:45:56 fetching corpus: 5050, signal 233844/306766 (executing program) 2023/02/25 11:45:56 fetching corpus: 5100, signal 234443/307769 (executing program) 2023/02/25 11:45:56 fetching corpus: 5150, signal 235162/308808 (executing program) 2023/02/25 11:45:56 fetching corpus: 5200, signal 235689/309738 (executing program) 2023/02/25 11:45:56 fetching corpus: 5250, signal 236663/310859 (executing program) 2023/02/25 11:45:56 fetching corpus: 5300, signal 237431/311891 (executing program) 2023/02/25 11:45:56 fetching corpus: 5350, signal 238073/312852 (executing program) 2023/02/25 11:45:56 fetching corpus: 5400, signal 238624/313816 (executing program) 2023/02/25 11:45:56 fetching corpus: 5450, signal 239084/314754 (executing program) 2023/02/25 11:45:56 fetching corpus: 5500, signal 239661/315646 (executing program) 2023/02/25 11:45:57 fetching corpus: 5550, signal 240485/316666 (executing program) 2023/02/25 11:45:57 fetching corpus: 5600, signal 240950/317528 (executing program) 2023/02/25 11:45:57 fetching corpus: 5650, signal 241420/318436 (executing program) 2023/02/25 11:45:57 fetching corpus: 5700, signal 241939/319293 (executing program) 2023/02/25 11:45:57 fetching corpus: 5750, signal 242472/320145 (executing program) 2023/02/25 11:45:57 fetching corpus: 5800, signal 243198/321129 (executing program) 2023/02/25 11:45:57 fetching corpus: 5850, signal 243772/321937 (executing program) 2023/02/25 11:45:57 fetching corpus: 5900, signal 244448/322827 (executing program) 2023/02/25 11:45:58 fetching corpus: 5950, signal 245012/323714 (executing program) 2023/02/25 11:45:58 fetching corpus: 6000, signal 245600/324577 (executing program) 2023/02/25 11:45:58 fetching corpus: 6050, signal 246379/325534 (executing program) 2023/02/25 11:45:58 fetching corpus: 6100, signal 246815/326358 (executing program) 2023/02/25 11:45:58 fetching corpus: 6150, signal 247301/327152 (executing program) 2023/02/25 11:45:58 fetching corpus: 6200, signal 247931/328033 (executing program) 2023/02/25 11:45:58 fetching corpus: 6250, signal 248413/328797 (executing program) 2023/02/25 11:45:58 fetching corpus: 6300, signal 248858/329551 (executing program) 2023/02/25 11:45:59 fetching corpus: 6350, signal 249406/330377 (executing program) 2023/02/25 11:45:59 fetching corpus: 6400, signal 250044/331156 (executing program) 2023/02/25 11:45:59 fetching corpus: 6450, signal 250650/331990 (executing program) 2023/02/25 11:45:59 fetching corpus: 6500, signal 251267/332759 (executing program) 2023/02/25 11:45:59 fetching corpus: 6550, signal 251874/333538 (executing program) 2023/02/25 11:45:59 fetching corpus: 6600, signal 252346/334263 (executing program) 2023/02/25 11:45:59 fetching corpus: 6650, signal 252942/335064 (executing program) 2023/02/25 11:45:59 fetching corpus: 6700, signal 253498/335804 (executing program) 2023/02/25 11:46:00 fetching corpus: 6750, signal 254032/336577 (executing program) 2023/02/25 11:46:00 fetching corpus: 6800, signal 254614/337329 (executing program) 2023/02/25 11:46:00 fetching corpus: 6850, signal 254996/338021 (executing program) 2023/02/25 11:46:00 fetching corpus: 6900, signal 255877/338796 (executing program) 2023/02/25 11:46:00 fetching corpus: 6950, signal 256257/339467 (executing program) 2023/02/25 11:46:00 fetching corpus: 7000, signal 256695/340129 (executing program) 2023/02/25 11:46:00 fetching corpus: 7050, signal 257309/340814 (executing program) 2023/02/25 11:46:01 fetching corpus: 7100, signal 257903/341574 (executing program) 2023/02/25 11:46:01 fetching corpus: 7150, signal 258486/342272 (executing program) 2023/02/25 11:46:01 fetching corpus: 7200, signal 259042/342963 (executing program) 2023/02/25 11:46:01 fetching corpus: 7250, signal 259598/343659 (executing program) 2023/02/25 11:46:01 fetching corpus: 7300, signal 260139/344364 (executing program) 2023/02/25 11:46:01 fetching corpus: 7350, signal 260752/345103 (executing program) 2023/02/25 11:46:01 fetching corpus: 7400, signal 261351/345832 (executing program) 2023/02/25 11:46:02 fetching corpus: 7450, signal 261796/346491 (executing program) 2023/02/25 11:46:02 fetching corpus: 7500, signal 262153/347151 (executing program) 2023/02/25 11:46:02 fetching corpus: 7550, signal 262685/347815 (executing program) 2023/02/25 11:46:02 fetching corpus: 7600, signal 263155/348457 (executing program) 2023/02/25 11:46:02 fetching corpus: 7650, signal 263594/349091 (executing program) 2023/02/25 11:46:02 fetching corpus: 7700, signal 264117/349738 (executing program) 2023/02/25 11:46:03 fetching corpus: 7750, signal 264529/350334 (executing program) 2023/02/25 11:46:03 fetching corpus: 7800, signal 264918/350943 (executing program) 2023/02/25 11:46:03 fetching corpus: 7850, signal 265300/351589 (executing program) 2023/02/25 11:46:03 fetching corpus: 7900, signal 265737/352190 (executing program) 2023/02/25 11:46:03 fetching corpus: 7950, signal 266195/352795 (executing program) 2023/02/25 11:46:03 fetching corpus: 8000, signal 266747/353431 (executing program) 2023/02/25 11:46:03 fetching corpus: 8050, signal 267207/354040 (executing program) 2023/02/25 11:46:04 fetching corpus: 8100, signal 267609/354635 (executing program) 2023/02/25 11:46:04 fetching corpus: 8150, signal 268022/355237 (executing program) 2023/02/25 11:46:04 fetching corpus: 8200, signal 268442/355795 (executing program) 2023/02/25 11:46:04 fetching corpus: 8250, signal 268854/356371 (executing program) 2023/02/25 11:46:04 fetching corpus: 8300, signal 269109/356900 (executing program) 2023/02/25 11:46:04 fetching corpus: 8350, signal 269432/357437 (executing program) 2023/02/25 11:46:04 fetching corpus: 8400, signal 269705/357959 (executing program) 2023/02/25 11:46:05 fetching corpus: 8450, signal 270091/358524 (executing program) 2023/02/25 11:46:05 fetching corpus: 8500, signal 270483/359112 (executing program) 2023/02/25 11:46:05 fetching corpus: 8550, signal 270753/359687 (executing program) 2023/02/25 11:46:05 fetching corpus: 8600, signal 271066/360252 (executing program) 2023/02/25 11:46:05 fetching corpus: 8650, signal 271311/360778 (executing program) 2023/02/25 11:46:05 fetching corpus: 8700, signal 271595/361356 (executing program) 2023/02/25 11:46:05 fetching corpus: 8750, signal 271898/361876 (executing program) 2023/02/25 11:46:05 fetching corpus: 8800, signal 272244/362398 (executing program) 2023/02/25 11:46:06 fetching corpus: 8850, signal 272595/362901 (executing program) 2023/02/25 11:46:06 fetching corpus: 8900, signal 272903/363417 (executing program) 2023/02/25 11:46:06 fetching corpus: 8950, signal 273381/363914 (executing program) 2023/02/25 11:46:06 fetching corpus: 9000, signal 273700/364426 (executing program) 2023/02/25 11:46:06 fetching corpus: 9050, signal 274102/364940 (executing program) 2023/02/25 11:46:06 fetching corpus: 9100, signal 274413/365440 (executing program) 2023/02/25 11:46:06 fetching corpus: 9150, signal 275155/365917 (executing program) 2023/02/25 11:46:07 fetching corpus: 9200, signal 275503/365925 (executing program) 2023/02/25 11:46:07 fetching corpus: 9250, signal 275755/365925 (executing program) 2023/02/25 11:46:07 fetching corpus: 9300, signal 276091/365925 (executing program) 2023/02/25 11:46:07 fetching corpus: 9350, signal 276367/365925 (executing program) 2023/02/25 11:46:07 fetching corpus: 9400, signal 276828/365925 (executing program) 2023/02/25 11:46:07 fetching corpus: 9450, signal 277168/365925 (executing program) 2023/02/25 11:46:07 fetching corpus: 9500, signal 277504/365925 (executing program) 2023/02/25 11:46:07 fetching corpus: 9550, signal 277984/365925 (executing program) 2023/02/25 11:46:08 fetching corpus: 9600, signal 278452/365925 (executing program) 2023/02/25 11:46:08 fetching corpus: 9650, signal 278736/365925 (executing program) 2023/02/25 11:46:08 fetching corpus: 9700, signal 279042/365925 (executing program) 2023/02/25 11:46:08 fetching corpus: 9750, signal 279398/365925 (executing program) 2023/02/25 11:46:08 fetching corpus: 9800, signal 279664/365925 (executing program) 2023/02/25 11:46:08 fetching corpus: 9850, signal 279991/365925 (executing program) 2023/02/25 11:46:08 fetching corpus: 9900, signal 280359/365925 (executing program) 2023/02/25 11:46:08 fetching corpus: 9950, signal 280788/365925 (executing program) 2023/02/25 11:46:09 fetching corpus: 10000, signal 281123/365925 (executing program) 2023/02/25 11:46:09 fetching corpus: 10050, signal 281492/365925 (executing program) 2023/02/25 11:46:09 fetching corpus: 10100, signal 281697/365925 (executing program) 2023/02/25 11:46:09 fetching corpus: 10150, signal 282133/365925 (executing program) 2023/02/25 11:46:09 fetching corpus: 10200, signal 282474/365925 (executing program) 2023/02/25 11:46:09 fetching corpus: 10250, signal 282760/365925 (executing program) 2023/02/25 11:46:09 fetching corpus: 10300, signal 283130/365925 (executing program) 2023/02/25 11:46:09 fetching corpus: 10350, signal 283514/365925 (executing program) 2023/02/25 11:46:09 fetching corpus: 10400, signal 283805/365925 (executing program) 2023/02/25 11:46:10 fetching corpus: 10450, signal 284185/365925 (executing program) 2023/02/25 11:46:10 fetching corpus: 10500, signal 285427/365925 (executing program) 2023/02/25 11:46:10 fetching corpus: 10550, signal 285678/365925 (executing program) 2023/02/25 11:46:10 fetching corpus: 10600, signal 286219/365925 (executing program) 2023/02/25 11:46:10 fetching corpus: 10650, signal 286493/365932 (executing program) 2023/02/25 11:46:10 fetching corpus: 10700, signal 286845/365934 (executing program) 2023/02/25 11:46:10 fetching corpus: 10750, signal 287172/365934 (executing program) 2023/02/25 11:46:11 fetching corpus: 10800, signal 287584/365934 (executing program) 2023/02/25 11:46:11 fetching corpus: 10850, signal 287948/365934 (executing program) 2023/02/25 11:46:11 fetching corpus: 10900, signal 288315/365934 (executing program) 2023/02/25 11:46:11 fetching corpus: 10950, signal 288753/365934 (executing program) 2023/02/25 11:46:11 fetching corpus: 11000, signal 289037/365934 (executing program) 2023/02/25 11:46:11 fetching corpus: 11050, signal 289301/365934 (executing program) 2023/02/25 11:46:11 fetching corpus: 11100, signal 289653/365934 (executing program) 2023/02/25 11:46:11 fetching corpus: 11150, signal 289951/365934 (executing program) 2023/02/25 11:46:12 fetching corpus: 11200, signal 290323/365934 (executing program) 2023/02/25 11:46:12 fetching corpus: 11250, signal 290730/365934 (executing program) 2023/02/25 11:46:12 fetching corpus: 11300, signal 291021/365935 (executing program) 2023/02/25 11:46:12 fetching corpus: 11350, signal 291301/365935 (executing program) 2023/02/25 11:46:12 fetching corpus: 11400, signal 291519/365935 (executing program) 2023/02/25 11:46:12 fetching corpus: 11450, signal 291738/365940 (executing program) 2023/02/25 11:46:12 fetching corpus: 11500, signal 292156/365940 (executing program) 2023/02/25 11:46:13 fetching corpus: 11550, signal 292539/365940 (executing program) 2023/02/25 11:46:13 fetching corpus: 11600, signal 292894/365940 (executing program) 2023/02/25 11:46:13 fetching corpus: 11650, signal 293111/365940 (executing program) 2023/02/25 11:46:13 fetching corpus: 11700, signal 293491/365940 (executing program) 2023/02/25 11:46:13 fetching corpus: 11750, signal 293848/365940 (executing program) 2023/02/25 11:46:13 fetching corpus: 11800, signal 294175/365940 (executing program) 2023/02/25 11:46:13 fetching corpus: 11850, signal 294462/365940 (executing program) 2023/02/25 11:46:14 fetching corpus: 11900, signal 294802/365940 (executing program) 2023/02/25 11:46:14 fetching corpus: 11950, signal 295215/365940 (executing program) 2023/02/25 11:46:14 fetching corpus: 12000, signal 295502/365940 (executing program) 2023/02/25 11:46:14 fetching corpus: 12050, signal 295825/365940 (executing program) 2023/02/25 11:46:14 fetching corpus: 12100, signal 296063/365940 (executing program) 2023/02/25 11:46:14 fetching corpus: 12150, signal 296434/365940 (executing program) 2023/02/25 11:46:14 fetching corpus: 12200, signal 296623/365940 (executing program) 2023/02/25 11:46:15 fetching corpus: 12250, signal 296834/365940 (executing program) 2023/02/25 11:46:15 fetching corpus: 12300, signal 297155/365940 (executing program) 2023/02/25 11:46:15 fetching corpus: 12350, signal 297492/365940 (executing program) 2023/02/25 11:46:15 fetching corpus: 12400, signal 297842/365940 (executing program) 2023/02/25 11:46:15 fetching corpus: 12450, signal 298091/365940 (executing program) 2023/02/25 11:46:15 fetching corpus: 12500, signal 298542/365940 (executing program) 2023/02/25 11:46:15 fetching corpus: 12550, signal 298814/365940 (executing program) 2023/02/25 11:46:15 fetching corpus: 12600, signal 299069/365940 (executing program) 2023/02/25 11:46:15 fetching corpus: 12650, signal 299405/365940 (executing program) 2023/02/25 11:46:16 fetching corpus: 12700, signal 299735/365940 (executing program) 2023/02/25 11:46:16 fetching corpus: 12750, signal 300042/365940 (executing program) 2023/02/25 11:46:16 fetching corpus: 12800, signal 300362/365940 (executing program) 2023/02/25 11:46:16 fetching corpus: 12850, signal 300666/365940 (executing program) 2023/02/25 11:46:16 fetching corpus: 12900, signal 301061/365940 (executing program) 2023/02/25 11:46:16 fetching corpus: 12950, signal 301358/365940 (executing program) 2023/02/25 11:46:16 fetching corpus: 13000, signal 301544/365940 (executing program) 2023/02/25 11:46:17 fetching corpus: 13050, signal 301805/365940 (executing program) 2023/02/25 11:46:17 fetching corpus: 13100, signal 302123/365940 (executing program) 2023/02/25 11:46:17 fetching corpus: 13150, signal 302528/365940 (executing program) 2023/02/25 11:46:17 fetching corpus: 13200, signal 302882/365940 (executing program) 2023/02/25 11:46:17 fetching corpus: 13250, signal 303097/365941 (executing program) 2023/02/25 11:46:17 fetching corpus: 13300, signal 303418/365941 (executing program) 2023/02/25 11:46:17 fetching corpus: 13350, signal 303769/365941 (executing program) 2023/02/25 11:46:17 fetching corpus: 13400, signal 304068/365941 (executing program) 2023/02/25 11:46:18 fetching corpus: 13450, signal 304315/365941 (executing program) 2023/02/25 11:46:18 fetching corpus: 13500, signal 304640/365941 (executing program) 2023/02/25 11:46:18 fetching corpus: 13550, signal 304932/365941 (executing program) 2023/02/25 11:46:18 fetching corpus: 13600, signal 305186/365941 (executing program) 2023/02/25 11:46:18 fetching corpus: 13622, signal 305286/365941 (executing program) 2023/02/25 11:46:18 fetching corpus: 13622, signal 305286/365941 (executing program) 2023/02/25 11:46:20 starting 8 fuzzer processes 11:46:20 executing program 0: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000240), 0x155a83, 0x0) r1 = accept4(r0, 0x0, &(0x7f0000000280), 0x80000) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) recvmmsg$unix(r2, &(0x7f0000003240)=[{{&(0x7f0000000300), 0x6e, &(0x7f0000000880)=[{&(0x7f0000000380)=""/25, 0x19}, {&(0x7f00000003c0)=""/66, 0x42}, {&(0x7f0000000440)=""/103, 0x67}, {&(0x7f00000004c0)=""/218, 0xda}, {&(0x7f00000005c0)=""/43, 0x2b}, {&(0x7f0000000600)=""/240, 0xf0}, {&(0x7f0000000700)=""/206, 0xce}, {&(0x7f0000000800)=""/72, 0x48}], 0x8, &(0x7f0000000900)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}}, {{&(0x7f00000009c0), 0x6e, &(0x7f0000000ac0)=[{&(0x7f0000000a40)=""/73, 0x49}], 0x1}}, {{&(0x7f0000000b00)=@abs, 0x6e, &(0x7f0000001c40)=[{&(0x7f0000000b80)=""/4096, 0x1000}, {&(0x7f0000001b80)=""/112, 0x70}, {&(0x7f0000001c00)=""/24, 0x18}], 0x3, &(0x7f0000001c80)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0xb0}}, {{0x0, 0x0, &(0x7f00000030c0)=[{&(0x7f0000001d40)=""/5, 0x5}, {&(0x7f0000001d80)}, {&(0x7f0000001dc0)=""/71, 0x47}, {&(0x7f0000001e40)=""/216, 0xd8}, {&(0x7f0000001f40)=""/98, 0x62}, {&(0x7f0000001fc0)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/3, 0x3}, {&(0x7f0000003000)=""/123, 0x7b}, {&(0x7f0000003080)=""/49, 0x31}], 0x9}}, {{0x0, 0x0, &(0x7f00000031c0)=[{&(0x7f0000003180)=""/5, 0x5}], 0x1, &(0x7f0000003200)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}], 0x5, 0x2020, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r11, 0x9, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000003380), &(0x7f00000033c0)='./file0\x00', 0xfffffffffffffffc, 0x2, &(0x7f00000035c0)=[{&(0x7f0000003400)="55c78fd5b729cc9c37104b94d10038858a4dcc62153e08725bb45a3d35b3ab24d0b6dfd0ef37a0590707ea37c09cd0941b954dbd8937cca92a09a5179289ef4338d61e4ff4cf4221031975893b8543434f73e58c88a2d04e772d5a63227566678ab9c3673e30fc9a0bb65bbf5536bac8409c8a36ff074a799133f9b232ba901f0074fc0e93d874ed8f6483782f51fae938ee5c12a86483f3a30fdb290c7c85f3e88975c921bbef664287c412cf32d528612c27714771fbf2089c17bbe57ddb64c2c8246b7742", 0xc6, 0x10001}, {&(0x7f0000003500)="8fe47c2d2d9309929515921850e102e52e32dabcf2c4ae88031c4f5fb5d5d178c338480398c457b66e181fad6fb590deebf9f302b3753a58f112632a7d95bbc5ba0159c6bf52e05379f5be577abde35af1bb5ecc5da94cee38ab31fc759c064c4566c068c7a2ca72f04ba184a17a236e99038777ece9581404d3403574a1b1808adbe324c7ed85111e968773ccd17e83aa9a5440e388f54d47dbf8cf4dff54b4cec17c2a2d5b2a4277b0", 0xaa, 0x100000000000000}], 0x40, &(0x7f0000003600)={[{@utf8}, {@shortname_winnt}, {@shortname_mixed}, {@fat=@quiet}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@utf8no}], [{@fowner_lt={'fowner<', r6}}, {@appraise_type}, {@smackfsdef={'smackfsdef', 0x3d, '/dev/nvram\x00'}}]}) openat(r4, &(0x7f00000036c0)='./file0\x00', 0x20100, 0x11) r15 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KDDELIO(r15, 0x4b35, 0x401) openat$procfs(0xffffffffffffff9c, &(0x7f0000003700)='/proc/meminfo\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r8, 0xc0189378, &(0x7f0000003740)={{0x1, 0x1, 0x18, r14, {r9}}, './file0\x00'}) ioctl$FIGETBSZ(r16, 0x2, &(0x7f0000003780)) ioctl$PERF_EVENT_IOC_RESET(r5, 0x2403, 0x6) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0x40a85321, &(0x7f00000037c0)={{0x2}, 'port1\x00', 0xc1, 0x824, 0x2, 0x3, 0x1ff, 0x2, 0x200, 0x0, 0x2, 0x20}) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000003880), &(0x7f00000038c0), 0x2, 0x1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000003900)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r7, 0xc04c5349, &(0x7f0000003940)={0x7fffffff, 0x6a2c, 0x2}) ioctl$sock_inet_SIOCSIFDSTADDR(r10, 0x8918, &(0x7f00000039c0)={'batadv0\x00', {0x2, 0x0, @loopback}}) r17 = syz_open_procfs(r12, &(0x7f0000003a00)='net/vlan/config\x00') ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r17, 0xc018937b, &(0x7f0000003ac0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r13}}, './file0\x00'}) 11:46:20 executing program 3: r0 = syz_io_uring_complete(0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x4}) ioctl$EVIOCGLED(r0, 0x80404519, &(0x7f0000000040)=""/49) ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f0000000080)) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r0, 0xf504, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x10000002}) clone3(&(0x7f00000003c0)={0x80000, &(0x7f00000001c0), &(0x7f0000000200)=0x0, &(0x7f0000000240)=0x0, {}, &(0x7f0000000280)=""/104, 0x68, &(0x7f0000000300)=""/116, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff], 0x7, {r0}}, 0x58) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xe, 0xfb, 0x40, 0x1f, 0x0, 0xa01e, 0x4628, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101, 0x5}, 0x8200, 0xfffffffffffffffd, 0x7, 0x9, 0x1, 0xfffffff7, 0x3, 0x0, 0x1, 0x0, 0x515}, r3, 0x10, r5, 0x9) epoll_ctl$EPOLL_CTL_MOD(r5, 0x3, r6, &(0x7f0000000480)={0x60000000}) r7 = perf_event_open(&(0x7f00000004c0)={0x4, 0x80, 0xff, 0x5, 0x10, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x4, 0x4}, 0x6010, 0x10000, 0x1, 0x8, 0x1, 0x4, 0x8, 0x0, 0x8, 0x0, 0x10001}, r2, 0x0, r6, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f00000005c0)={{0x1, 0x1, 0x18, r7, {0x4}}, './file0\x00'}) r9 = perf_event_open(&(0x7f0000000540)={0x3, 0x80, 0x3, 0x7, 0x1, 0xee, 0x0, 0x5, 0x800, 0x8, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x9, 0x9}, 0x241c, 0xaad0, 0x29, 0x3, 0x6, 0x7, 0x7, 0x0, 0xc8, 0x0, 0x5}, 0x0, 0x7, r8, 0x8) mknod$loop(&(0x7f0000000600)='./file0\x00', 0xc000, 0x0) perf_event_open(&(0x7f0000000640)={0x4, 0x80, 0x81, 0x7, 0x7f, 0x8, 0x0, 0x4, 0xc0080, 0xebc3794bbcd27504, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x1ff}, 0x85b5, 0x6a0, 0xffffffff, 0x1, 0x3, 0x6, 0x5, 0x0, 0x101}, r2, 0x1, r6, 0x9) ioctl$VFAT_IOCTL_READDIR_BOTH(r8, 0x82307201, &(0x7f00000006c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000900)={0x5a8, 0x7ff}) ioctl$VFAT_IOCTL_READDIR_BOTH(r1, 0x82307201, &(0x7f0000000940)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) write(r9, &(0x7f0000000b80)="efea819f3f6c54f603e65eab0f195ceef57b9ec1d3d9daca97b15025cba64feae2816cd4e2f5bd6ff2242e0bad0027b3f8ae3251ddf73175ab0468cb125c9e63214cf7911e11606b9b2fec493503a63c71aa4ddd2dbe1e3334630899ff8517ee65bf3696f51ec52fc8d76c3af3bcb3b221fde56bbe93e2", 0x77) 11:46:20 executing program 1: ioctl$FS_IOC_READ_VERITY_METADATA(0xffffffffffffffff, 0xc0286687, &(0x7f0000000040)={0x1, 0x6, 0x17, &(0x7f0000000000)=""/23}) fsync(0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x70, 0x0, 0x100, 0x70bd27, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x70}, 0x1, 0x0, 0x0, 0x48b0}, 0x4040001) sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x74, 0x0, 0x583babda2e6cc602, 0x2, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0xd3c2, 0x53}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @random="659be789c265"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @random="a29b088d1833"}]}, 0x74}, 0x1, 0x0, 0x0, 0x400c0}, 0x20084800) r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_DEV(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x90, r0, 0x4, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_DEVICE={0x44, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_KEY_MODE={0x8, 0x6, 0x2}, @NL802154_DEV_ATTR_EXTENDED_ADDR={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ATTR_KEY_MODE={0x8, 0x6, 0x1}, @NL802154_DEV_ATTR_SECLEVEL_EXEMPT={0x5, 0x5, 0x1}, @NL802154_DEV_ATTR_SECLEVEL_EXEMPT={0x5, 0x5, 0x1}, @NL802154_DEV_ATTR_SHORT_ADDR={0x6}, @NL802154_DEV_ATTR_EXTENDED_ADDR={0xc, 0x4, {0x100}}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000002}, @NL802154_ATTR_SEC_DEVICE={0x10, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_EXTENDED_ADDR={0xc, 0x4, {0xaaaaaaaaaaaa0102}}]}, @NL802154_ATTR_SEC_DEVICE={0xc, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_SECLEVEL_EXEMPT={0x5, 0x5, 0x1}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x20000840}, 0x0) sendmsg$NL802154_CMD_GET_SEC_DEV(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x2c, r0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040000}, 0x40480c0) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000600)={0xffffffffffffffff, 0x1, 0x1, 0x16b9}) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_DEL_STATION(r2, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x54, 0x0, 0x20, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x1fa, 0x73}}}}, [@NL80211_ATTR_STA_PLINK_ACTION={0x5}, @NL80211_ATTR_STA_WME={0x24, 0x81, [@NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x1f}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x7}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0xaa}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x1}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40041}, 0x2000010) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_WPAN_PHY(r4, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x24, r0, 0x300, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x24}}, 0x0) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r4) sendmsg$IEEE802154_LLSEC_GETPARAMS(r4, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x28, r5, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r1}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x4000000) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000a40), r4) sendmsg$NL802154_CMD_GET_WPAN_PHY(r6, &(0x7f0000000b00)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x30, r7, 0x0, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x30}}, 0x0) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b80), r2) sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000e00)={&(0x7f0000000b40), 0xc, &(0x7f0000000dc0)={&(0x7f0000000bc0)={0x1f4, r8, 0x4, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x8001, 0x2d}}}}, [@NL80211_ATTR_IE={0x13a, 0x2a, [@random={0x1, 0x73, "f11ad899bacf2e3d4bf33dbbf1286d28a9c714115822c00b61316622aa56e3750d5bcd60f8861b6482b051f40d0de213905f5b61a6fd84264cd34c57a120b56c4384f8942f676cae5098e1869c14aedf9907d0e0a91468636cabf7a82dd67a671dad5876b07c7cf44d6bb62823f3f056565675"}, @erp={0x2a, 0x1, {0x1, 0x1, 0x1}}, @gcr_ga={0xbd, 0x6}, @tim={0x5, 0xb4, {0x3, 0x77, 0x9, "3e16faaf49b542bb1600fd2fe784c1599c1a732ccfedb80a7fb4914632bc18b6afb6691e8d3d100ed9dfd60f7805305eb1ea0c9557eaa4b9e23be78d90d9208fa8b5cbc21e3373e1e7ec7be517095ef82cea8a16cd9f351eac42ef3fc843545dde6d0bc6d8ad6035b44e0e56db3f03af3932fda48b2cbe163580430245afdd6f337de8ab98ee2c7a209b17c0026f7e138b05b047b5cfea5047113e0239f2caf95a1be36d580101d99abf785c0372597c51"}}]}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_MESH_CONFIG={0x44, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT={0x8}, @NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL={0x6, 0x19, 0x6}, @NL80211_MESHCONF_PATH_REFRESH_TIME={0x8, 0x9, 0x8}, @NL80211_MESHCONF_PLINK_TIMEOUT={0x8, 0x1c, 0xffffff3e}, @NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME={0x6, 0xd, 0x4}, @NL80211_MESHCONF_GATE_ANNOUNCEMENTS={0x5}, @NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL={0x6, 0xc, 0x6}, @NL80211_MESHCONF_AUTO_OPEN_PLINKS={0x5, 0x7, 0x9}]}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x11b}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x37}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x6}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x15e0}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2e}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x161c}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x96c}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x2}]]}, 0x1f4}, 0x1, 0x0, 0x0, 0x4000}, 0x0) 11:46:20 executing program 4: r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0xb0, r0, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}]}, 0xb0}, 0x1, 0x0, 0x0, 0x4050}, 0x40041) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x70, 0x0, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x0, 0x1}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x47}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x9}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x20}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x42}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x32}]}, 0x70}, 0x1, 0x0, 0x0, 0x18}, 0x24040010) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x3c, r2, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000800}, 0x8000) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480), 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x74, r3, 0x2, 0x70bd2a, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x60, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'wlan1\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xff}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x24004000}, 0x20048081) r4 = creat(&(0x7f0000000600)='./file0\x00', 0x1f4) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$NL80211_CMD_UPDATE_FT_IES(r4, &(0x7f0000000c00)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000bc0)={&(0x7f00000006c0)={0x4dc, r5, 0x300, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x6, 0x3f}}}}, [@NL80211_ATTR_IE={0x67, 0x2a, [@ht={0x2d, 0x1a, {0x8, 0x3, 0x5, 0x0, {0x3, 0x7f, 0x0, 0x7, 0x0, 0x0, 0x1, 0x3}, 0x800, 0x3, 0x43}}, @rann={0x7e, 0x15, {{0x1, 0x1}, 0x7f, 0x6c, @device_b, 0x1, 0x80000000, 0x6}}, @peer_mgmt={0x75, 0x18, {0x0, 0x6a8, @val, @val=0x31, @val="2bf14e84a10182e6cd23d57875303ff9"}}, @erp={0x2a, 0x1, {0x0, 0x1, 0x1}}, @dsss={0x3, 0x1, 0xa5}, @channel_switch={0x25, 0x3, {0x1, 0xb9, 0x1f}}, @mesh_id={0x72, 0x6}, @erp={0x2a, 0x1, {0x1, 0x0, 0x1}}]}, @NL80211_ATTR_IE={0x21b, 0x2a, [@ibss={0x6, 0x2, 0x7f}, @perr={0x84, 0x8a, {0x7, 0xa, [@not_ext={{}, @device_a, 0x2, "", 0x23}, @not_ext={{}, @device_a, 0x2, "", 0xf}, @not_ext={{}, @device_a, 0x1, "", 0x2d}, @not_ext={{}, @device_b, 0x33f, "", 0x27}, @not_ext={{}, @device_a, 0x4, "", 0x3b}, @not_ext={{}, @device_b, 0x6, "", 0x8}, @ext={{}, @device_a, 0xa74, @device_b, 0x35}, @not_ext={{}, @device_b, 0x80000000, "", 0x22}, @not_ext={{}, @broadcast, 0x100, "", 0x25}, @not_ext={{}, @broadcast, 0x2, "", 0x3b}]}}, @mesh_id={0x72, 0x6}, @mesh_chsw={0x76, 0x6, {0x0, 0x0, 0x2d, 0x7f}}, @tim={0x5, 0x77, {0x5, 0x8b, 0x8, "6498db90656aec6805bffc7d5dfddd13b8ac49a12e75d6f448d9f86b931a3a4ce7e76aeebead6d92551627016143384711e554170c02db86fd2abefc35ca2bcbf4b047fba4687906423e9c34ccd0f1b15c3144dff40c961db97e1c220c1bc6371e4f70ed7909f126f9203cbfd5cec204ceefe53e"}}, @mesh_chsw={0x76, 0x6, {0x7, 0x9, 0x33, 0x7}}, @tim={0x5, 0xf4, {0x91, 0x41, 0x80, "69e85a982e2ccdf71a8137c029befd4c4294e5680498ea3c56a4a387ed1cc4ced2c98748f2d0c068b5e5fd66e404b2ad2a05f72aea3642a085aed58b5e04e7c6ceed888aeadfca210394be2ac807a03c6316647fdbfdcd0a3695a654bf03d58fae958d76bbc37bcbd1fe0414be4d34bb60933e8e785bf9870b2de3af4e65b0122d09c77281cc1fc35a95495bdf38b7efb2c1172763e9e91d1ee220aa873f827afaf3723c065195a850a409cec8b9468a892c42ef89d397e1525bc6975d6d1272788a2c1596271539edf8e95e58e9f9a2419b85f3fff3fe406a6720384badfb8b0011c2dbebde91b4ac03a4be5a3f7e7c6c"}}]}, @NL80211_ATTR_IE={0x16, 0x2a, [@mic={0x8c, 0x10, {0x159, "b7cf746385c7", @short="de069604d779cb58"}}]}, @NL80211_ATTR_IE={0x1ff, 0x2a, [@link_id={0x65, 0x12, {@random="667954220eb2", @device_b, @device_b}}, @preq={0x82, 0x67, @not_ext={{0x1, 0x1, 0x1}, 0x2, 0xad, 0x8, @device_a, 0x1, "", 0x1, 0x800, 0x7, [{{0x1}, @broadcast}, {{0x0, 0x0, 0x1}, @broadcast, 0xffffff7f}, {{0x1}, @device_a, 0x7}, {{}, @device_a, 0x7}, {{0x0, 0x0, 0x1}, @device_b, 0x568f}, {{0x1}, @device_b, 0xfffffff7}, {{0x1, 0x0, 0x1}, @device_a, 0xe00000}]}}, @fast_bss_trans={0x37, 0x69, {0x40, 0x1, "0a81c7f154f27224458a290673b2ac61", "8e219a8fe5429de666d9e7eeb918b2d7c2a0f3246b4a701ca910e63861bbb03e", "c36e9216c09097c380faa3815a9c6548f9cdcd2326eab8d2b39863a12f6abe81", [{0x1, 0x15, "cb0718a5ec28c536dc44397ec5fa1246a0c2bc1835"}]}}, @mic={0x8c, 0x18, {0x962, "6374909e0c12", @long="4c10d2565eb16bde5c2f8a748d393dae"}}, @mic={0x8c, 0x10, {0x872, "76fd8207aebc", @short="16e6f477ccb7dd18"}}, @supported_rates={0x1, 0x8, [{0x4}, {0xc}, {0x9}, {0x48, 0x1}, {0x4}, {0xc, 0x1}, {0x6, 0x1}, {0x6c}]}, @perr={0x84, 0xdb, {0x0, 0xd, [@not_ext={{}, @broadcast, 0x1, "", 0x1f}, @not_ext={{}, @device_b, 0x0, "", 0x21}, @not_ext={{}, @device_b, 0x8001, "", 0x12}, @ext={{}, @device_b, 0x6, @device_b, 0x29}, @ext={{}, @device_a, 0xf8000000, @broadcast, 0x41}, @ext={{}, @broadcast, 0x9, @device_a, 0x37}, @ext={{}, @broadcast, 0x3f, @device_a, 0x1c}, @not_ext={{}, @device_a, 0x3, "", 0x2c}, @ext={{}, @broadcast, 0x32d1, @broadcast, 0x35}, @ext={{}, @device_a, 0x7, @device_b, 0x29}, @ext={{}, @device_b, 0x9, @device_a, 0x2}, @ext={{}, @device_b, 0x4fb8, @broadcast, 0xf}, @not_ext={{}, @device_b, 0x3, "", 0x3a}]}}]}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x823}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x9}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x6}, @NL80211_ATTR_MDID={0x6, 0xb1, 0xfffc}]}, 0x4dc}}, 0x0) sendmsg$DCCPDIAG_GETSOCK(r4, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x70, 0x13, 0x100, 0x70bd2a, 0x25dfdbfc, {0x1a, 0x2, 0x1, 0x1, {0x4e22, 0x4e24, [0x8001, 0x3f, 0x8, 0x6], [0x10000, 0x3, 0x7fff, 0x81], 0x0, [0xb7, 0x7]}, 0x0, 0x7}, [@INET_DIAG_REQ_BYTECODE={0x24, 0x1, "7dd76fa714e9d1d89499a8631be84c640234118b6930258cb01b94f76f985fd1"}]}, 0x70}, 0x1, 0x0, 0x0, 0x40001}, 0x4c890) r6 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000d80), 0x30080, 0x0) fallocate(r6, 0x1, 0x4f, 0x3) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_STATION(r4, &(0x7f0000000f00)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e40)={0x44, r7, 0x700, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x2, 0x7d}}}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x8}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x222}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x21, 0xfffffffb}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x20000000) sendmsg$802154_dgram(r4, &(0x7f0000001080)={&(0x7f0000000f40)={0x24, @short={0x2, 0xffff, 0xaaa0}}, 0x14, &(0x7f0000001040)={&(0x7f0000000f80)="c02f0461586a2be9726cdc2b751501198f7addfcaddb15126d7e572babc0f6796119261ba2b27724cd6c805c6c726051b9d6318db3041878a1ed4d4b377b09033808a0af7157a0a3b12a89fefde2604650ad8634973176b5821cec8bc7e5c98f8ac6a91122043d73ac2c64bc1a3ab5abbafd35a3aed121f117abb5a0214c6a4e420a303aca2b71bc59c05e", 0x8b}, 0x1, 0x0, 0x0, 0x6}, 0x40) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CALIPSO_C_LISTALL(r8, &(0x7f0000001180)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001140)={&(0x7f0000001100)={0x1c, 0x0, 0x4, 0x70bd29, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}}, 0x4004810) openat(0xffffffffffffff9c, &(0x7f00000011c0)='./file0\x00', 0x80000, 0x140) 11:46:20 executing program 2: ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x1}}, './file0\x00'}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@noextend}, {@msize={'msize', 0x3d, 0xff}}, {@access_any}, {@access_client}], [{@permit_directio}, {@audit}]}}) r1 = accept$unix(r0, &(0x7f0000000180), &(0x7f0000000200)=0x6e) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000240)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000280)='./binderfs2/binder0\x00', 0x2, 0x0) readv(r3, &(0x7f0000001940)=[{&(0x7f00000002c0)=""/64, 0x40}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/193, 0xc1}, {&(0x7f0000001400)=""/210, 0xd2}, {&(0x7f0000001500)=""/179, 0xb3}, {&(0x7f00000015c0)=""/219, 0xdb}, {&(0x7f00000016c0)=""/159, 0x9f}, {&(0x7f0000001780)=""/232, 0xe8}, {&(0x7f0000001880)=""/129, 0x81}], 0x9) write$P9_RLERRORu(r2, &(0x7f0000001a00)={0x1c, 0x7, 0x2, {{0xf, 'permit_directio'}, 0x5}}, 0x1c) openat$binderfs(0xffffffffffffff9c, &(0x7f0000001a40)='./binderfs/binder0\x00', 0x802, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000001a80)={{0x1, 0x1, 0x18, r2, {0xa9}}, './file1\x00'}) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000001ac0), 0x81, 0x0) mount$9p_fd(0x0, &(0x7f0000001b00)='./file0\x00', &(0x7f0000001b40), 0x20080, &(0x7f0000001b80)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {}, 0x2c, {[{@debug={'debug', 0x3d, 0x400}}, {@access_user}, {@access_uid={'access', 0x3d, 0xee00}}, {@posixacl}, {@nodevmap}, {@privport}, {@noextend}], [{@smackfshat={'smackfshat', 0x3d, 'msize'}}, {@smackfsdef={'smackfsdef', 0x3d, '-\x87'}}]}}) setxattr$incfs_metadata(&(0x7f0000001c40)='./file0\x00', &(0x7f0000001c80), &(0x7f0000001cc0)="1274885bfad8933e7a6c2d09f3d796b75f46366bf1b605b1a7a6ee5ecc790abc0259640b03b5190cab48af7e52205c3a9da2f4f0169eedf7279d18b0b7ff6b72c8a2906302daa72671ab1fa5b859be642fd1422c7e7d8ce598c51a945cd88e7f7962f18dab28117e52e9ed58752d0df8175333c50b3492b19e10881ad9dd7e1bca0343b2978b32db38f5d80f08488761ad35d2816ac98bf600d47455884b448f10170b91476fb152a1948703f309c0fdbc4ca413ed4d9a2fac6e86e4f267c90bcb74ef0d37b9d0b5d3ce91e6cb2a6ecd4d0a4245bde985cc5cda69570abcdce9e4628ca4de8946", 0xe7, 0x2) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000001dc0)={0x0, 0x6, r2, 0x40}) r6 = syz_mount_image$ext4(&(0x7f0000001e00)='ext4\x00', &(0x7f0000001e40)='./file1\x00', 0x5, 0x5, &(0x7f0000002340)=[{&(0x7f0000001e80)="7b2b0e13e8fb3c3cf070d9b4b3a24948be400ed920ec8af926865e4a1cf339c70d004b79829f8b1ed1f8b439e3ab3ef3f7e9a44c4ee5a62a9fceac5832773e2c88be2a602dd5c9552496ddfff929aa1d805dba7c938f97cb5827942ec2170b7365eaa8a178c9d46b33e9d0855c0ca52d079ff8143d3070c6db98e47218483b45a0041bb2a8388717722e6dad0b7e7f61df", 0x91, 0x101}, {&(0x7f0000001f40)="f06e9b9ab2e6c8079b4825878b912dc70df59a77f49c3a909cd80e0289f7e23326de9fca18cc15578226f66427073cf8282fe854990caceb91a3c0389bb069247352e6f794c061ecfccf3cfd04757f71fc90dcb108d1c63505221e65041c52a6e554a83ced21294cdb861b290dde8758350822dfd4520471670c06153f4c75780018f08895257ffa51122867d49d6daee25923b031b4333a0a3f511856ea650864a5f0e85de599e54770c558a2a88303daaf0d4c84e974373d7d81890f67f81886f49de720d1bb990e717bfe025f6de98a9708693d7c1e849061fb372d043c75154f", 0xe2, 0x40}, {&(0x7f0000002040)="ccafe929cc268f9a29c68d2f8e5d90e0b6319f6ba5f378e29e301e7167f36de16b4ccbb8339488f9ce75ebdba116a390ace838c7ff4978bf266df470aee524235392990feec46e4d511db9619c5b762fb761e353e10c157c8383467b33cf840b894467245931aa0cb7ad678ef2d3c8f9abca527fc2b7b97a617d65ac2f8c0fdefa4ee87edf4bc4ddef252aa1503944e5489745668f27099750b2ccf74fb66ac1f3324a958a26863fddcfaea2bce9d38a49bdec2b3ffa10c1cf4e0b37f462c88fec43732767d41502aa72221610b01cea179aac8c5fc122135bdd0014834b2679bdc600d8d1cd3996e72fdf11", 0xec, 0x1}, {&(0x7f0000002140)="33a78b42304b7d6afe12018755fefcf1aff8fb41dce928986f823b92f64fb8d5255907d8564f4c59ee8a65aa0b553548a5eda28dbcb07c2be486fd7836a5f24d61569f0442dbd684438e6d65181b219885a6856553749469c3225494196e32f360dcb68896bdbe7c4f03aeb6ced311c18f1894fbe4631e1037bcb50c3f344915c7cd45be9d766e2a3af84f843cf81a8db852306efeb7f548079b1267f2311ba4bdea8ef5bc3a8223762fa80c50d43e8ebe105d305d5fb889f376a35da39c6e08dd0c7ed39e309b9e8c25d18f", 0xcc, 0x3}, {&(0x7f0000002240)="caa015413c17812d940896190dbb7d52efcb9b6ef296cb46f8f52204c167e302e8aee1717c90513cb80a3b78d8eabec12c0cafd963db9b9532a365d7c8255757bcf6638588a94f2b5771ba0760969fe1582675ce6f0935dbde3b7a52938432a58bc2ca878ad66f147512046ebb3d43d4c35f774a8a9d5f8500d8a38e7de56ac0dd81615f66e53fc59a69559037e7888f77a34797c7bfb0ee047e433b5882fa067d16c64b1b0d2fb9df553979053972b7c41a55cb127e182701d8f868dd9dc19cbaaa", 0xc2, 0x8001}], 0x800, &(0x7f00000023c0)={[{@data_err_ignore}, {@acl}, {@bh}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}, {@noquota}, {@jqfmt_vfsold}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@jqfmt_vfsold}, {@dax}], [{@fsuuid={'fsuuid', 0x3d, {[0x32, 0x30, 0x36, 0x33, 0x33, 0x31, 0xdf5f1fe24f0c010e, 0x61], 0x2d, [0x34, 0x62, 0x34, 0x64], 0x2d, [0x33, 0x31, 0x34, 0x31], 0x2d, [0x66, 0x0, 0x39, 0x66], 0x2d, [0x35, 0x35, 0x36, 0x38, 0x62, 0x32, 0x39, 0x36]}}}, {@euid_eq}, {@smackfstransmute={'smackfstransmute', 0x3d, '-.,:}{#!^%!@(&'}}]}) fremovexattr(r6, &(0x7f00000024c0)=@random={'btrfs.', ':\x00'}) r7 = syz_open_dev$mouse(&(0x7f0000002500), 0x2, 0x4000) r8 = accept$inet(r4, &(0x7f0000002b80)={0x2, 0x0, @broadcast}, &(0x7f0000002bc0)=0x10) r9 = open(&(0x7f0000002c00)='./file0\x00', 0x80800, 0x44) r10 = openat$cgroup_freezer_state(r0, &(0x7f0000002c40), 0x2, 0x0) sendmmsg$unix(r7, &(0x7f0000003400)=[{{&(0x7f0000002540)=@file={0x1, './file1\x00'}, 0x6e, &(0x7f0000002a40)=[{&(0x7f00000025c0)="5da6cb46c9343dc5de9580fd5b133b30be53df9c7e098addcc13f7d929fdc1bf081334f47fbdc993d2686d9a27e0485cb5de026546633936774495e9c944c30a401c0eddbe6df8a861a1a9565e67b50a0d95fcccb86712b937f725954c685e5d6ead992b324f5f8f29b29c9063d7df8964b37deb6f3c282f91146c2f259e8ab0e80b70a8a3abddfc39c1754df7e808f5a5", 0x91}, {&(0x7f0000002680)="75a89bb1c7bb096b6f697ecd4405e4a6dd58c88815efe92f1d49d3ec42978f8a40f8b8803d64fd53de23ed083816eec3bff9b5ff37b37cd41c594e2e09e2008695197c2da355ae8774ada43e37d5a0c7dddf113bf1e22e3be93b24d87f5fa6c99d935615952754edf6aabbe8ecc9a345bf62c79f5eeac0211e0f1e7c690035482b34f51a473ff5e7e39ad9d69a13e317840799018113aabf98daebc53e4c4e8c777ac347aa98b389a7579a28b1ef57079eb81bfe51cd0fa867e26bc4e33884eb7b7f09b352dab92e24290dedc8118d60d131dfb01da75d00027857035f6fcc793e3d8a0b3e478a792909beea790869c88faad00aa56a", 0xf6}, {&(0x7f0000002780)="239f7274b102115c8d6f083766e4e4b47db9a5d8e39092d7c0e1dbe11400d7b765e5fa4aca7a497877c540a282dc9166995db12a9e49bb553f2c6d34e4", 0x3d}, {&(0x7f00000027c0)="31685d0bd8dc8d22e99445dae71f3e0b823fa04ed787d1607c4023f6d1ad97d8ade9130ad1f77c3e762965b62e68adc8dd889a624739ba7f3522", 0x3a}, {&(0x7f0000002800)="75279e47d7965ed69fde39938dcb41cf2b7dda1b759ba52770f66e9ce0e643460a5360ca60f46f0159234767d105624df3b009921dd1197464ae3e004d1f140db8ee2f1a31605d3b7176fa7ab78e73e84ebf41e374c96bae7e4e20b845e748d3d715415f59cb40a8ae0b6a5c", 0x6c}, {&(0x7f0000002880)="158087fdc438601693644b3608d05d73ace1b25a716574c87b6daf2cc9e0474e3b537138002edf8e838fc07e5435d0aae1bc424c6a88c73ad4b048f9ea7a19d206aa4c4016c353a8e3f6ac99d807eff33e133f694522c264a889b8f87e6ebd81a114bbc4c4e151697c818038ffe5ce06503417271478e431cbcdfd7afb2d07de003c1d01577a2d19ee78d5d506fe3e549f5d85f79bc9ca32f1d17ab237b55f3d9fc0544b8c4f10ac4c9a5fd7ee92c57fbda447d628497e7ea5ae0510ebca833bf2cd7e01", 0xc4}, {&(0x7f0000002980)="c910c8360259a2c2e79188ddec2e6b9c31bf3d01419515e34668fbaf98eb031d2a018030d9c119167933096dce6060ddc9a0f7aa8215d38c263ebabbaf1b35f4de24bf3212035e90bf6ed51861e98a76ac6420dcc6fa507bf527358909f599166320830c6847c731155ee4bb53a4c51117136e0a3f880788ab630fe16c5a5750d9c835817ad89b98c12f06adc5971922c3745c34e923e346", 0x98}], 0x7, &(0x7f0000003300)=[@rights={{0x30, 0x1, 0x1, [r8, r3, r9, r10, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r4, r0]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [r3, 0xffffffffffffffff, r6]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}], 0xf0, 0x8040}}], 0x1, 0x4) 11:46:20 executing program 5: r0 = syz_io_uring_setup(0x1b5f, &(0x7f0000000000)={0x0, 0xc84a, 0x1, 0x0, 0x151}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_io_uring_setup(0x2c94, &(0x7f0000000100)={0x0, 0x5f6, 0x1, 0x2, 0x27e, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0)) io_uring_enter(r1, 0x4e4b, 0xbf04, 0x2, &(0x7f0000000200)={[0x7]}, 0x8) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$int_out(r2, 0x2, &(0x7f0000000240)) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000280)={{{@in6=@empty}}, {{@in=@multicast1}, 0x0, @in=@empty}}, &(0x7f0000000380)=0xe8) munmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000003c0)='auxv\x00') r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000400), 0x101202, 0x0) io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000440)=[r4, r1], 0x2) ioctl$BTRFS_IOC_LOGICAL_INO(r1, 0xc0389424, &(0x7f00000004c0)={0x4, 0x30, '\x00', 0x1, &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) io_uring_enter(r0, 0x145, 0x759a, 0x0, &(0x7f0000000500)={[0x9]}, 0x8) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x810, r1, 0x0) r5 = shmget(0x1, 0x1000, 0x100, &(0x7f0000fff000/0x1000)=nil) get_mempolicy(&(0x7f0000000540), &(0x7f0000000580), 0x1, &(0x7f0000ffc000/0x1000)=nil, 0x0) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f00000005c0)=0x1) shmctl$IPC_RMID(r5, 0x0) r6 = eventfd2(0x6, 0x80002) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000600)=r6, 0x1) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000680)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'}) 11:46:20 executing program 6: ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000000)=0x1) ioctl$HIDIOCGUSAGE(0xffffffffffffffff, 0xc018480b, &(0x7f0000000040)={0x2, 0x200, 0x4, 0x1, 0x100, 0x9}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1, 0x7}}, './file0\x00'}) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0) r2 = accept$inet(r0, &(0x7f0000000100)={0x2, 0x0, @loopback}, &(0x7f0000000140)=0x10) ioctl$BTRFS_IOC_SCRUB(r2, 0xc400941b, &(0x7f0000000180)={0x0, 0x9, 0x100}) socket$inet(0x2, 0x4, 0x6f) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCGARP(r3, 0x8954, &(0x7f0000000580)={{0x2, 0x4e23, @remote}, {0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}}, 0x0, {0x2, 0x4e23, @local}, 'ip6erspan0\x00'}) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) setsockopt$inet_msfilter(r4, 0x0, 0x29, &(0x7f0000000600)={@rand_addr=0x64010100, @remote, 0x1, 0xa, [@initdev={0xac, 0x1e, 0x0, 0x0}, @local, @multicast2, @private=0xa010100, @dev={0xac, 0x14, 0x14, 0x3d}, @multicast1, @loopback, @local, @rand_addr=0x64010101, @remote]}, 0x38) r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000640), 0x257681, 0x0) sendfile(r5, 0xffffffffffffffff, &(0x7f0000000680)=0xf5f, 0x1000) r6 = socket(0x8, 0x4, 0x106e) sendmsg$NL80211_CMD_LEAVE_OCB(r6, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x14, r1, 0x2, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) socket$inet_icmp(0x2, 0x2, 0x1) setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000800)={0x5, &(0x7f00000007c0)=[{0x225, 0x1, 0x3, 0x9}, {0x9, 0x8, 0x8, 0xfad9}, {0x2, 0xe0, 0xff, 0x80000000}, {0xe70d, 0x4, 0x40, 0xffffffff}, {0x7, 0x8d, 0x1, 0x7}]}, 0x10) r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000840), 0x507001, 0x0) ioctl$FICLONE(r7, 0x40049409, 0xffffffffffffffff) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r7, 0x80045300, &(0x7f0000000880)) [ 95.017489] audit: type=1400 audit(1677325580.903:6): avc: denied { execmem } for pid=261 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:46:20 executing program 7: ioctl$INCFS_IOC_CREATE_FILE(0xffffffffffffffff, 0xc058671e, &(0x7f0000000340)={{'\x00', 0x1}, {0x1f}, 0x2, 0x0, 0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)="08825c5e12d416468adac56f028711176b68678b5cb951a088fcc2bd00fb23fdc649f550104b34f5d3583cdeac999d142cdd69f040ff4fdb989ac4977b7b6bbf9cf73c9b1dcc096c4bc7e0cb49dd68a190520858ff3896f0e6e80d9d9ce0ec0642a338d0dc51a05a6bec8f98e93a574e51ab873642383cb2f63314929b4a80571b673ad6e61c74d1beb4bbd41141686e21319d8b740d82564e41adbc6c8237ce97703995", 0xa4, 0x0, &(0x7f0000000140)={0x2, 0x110, {0x1, 0xc, 0xd6, "6c16d62937015e1fbe39ba9c13446f2cd17ed8c383ea1749d90bf0ad3efae1513698a06f5e661d92985d5480ae8ba5e79c6bdfca470dadc89d76f1badc5a445b4099afc8bf16457c6ba64b12a2c571dd6a39745e66c3b4279d12a3b1560330ea0997e0d148ba03038651843866790596d14da225666d1a66ae1e8c63b5fc67263a4de1f30fcdb3f746af545df500be5e40f0c8e30176d5c49592eb2236ffffb0bf3ab576c91cc07f86a0bf957f47d6f84ca6ec2c49f1553ed80df4d0ab5c7cb790c17b35f9768034232927009e7ee9c437ad344cb218", 0x2d, "2a01c77daae3c3289aa8a88268885f44cfd5ad74b5ff6ce2b8221bfc4ce944116165e7baa59d58dca7496628d8"}, 0xc5, "7f28d897f9e07e9b90d1bb09afb9fd0ae315c6cb313674a52c832435a7ffc6156e8d98ab97eac4cae6068f729aef8604c4b363436dec97ea12a55a5055ca0685780fe6d7b74346ad62a3b4c1455722bbe7ce11b1a4c3c779a12e11a6fa19143589f71a4d3d60f9c9eb95393aa947832d70754e7cd8d067149935c70fbb1da2dc1e1171fa01e0d05c121acf458d752390a779bb5e657f96f078aea8d1a41dbd6b57f3d247162ed8b0188f1007f07f4c781e925ab70520590c46fbd4b80498b258e09b925e95"}, 0x1e1}) r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$binder(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x7) ioctl$FIONCLEX(r0, 0x5450) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f00000003c0)={{0x0, 0x1, 0x1, 0x1, 0xff, 0x1, 0x5, 0x2, 0x0, 0x100, 0x50, 0xe, 0x2, 0xfffffffffffffffc, 0x6174}}) ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f00000013c0)={r1, 0x8}) write$binfmt_aout(r0, &(0x7f00000023c0)={{0x107, 0x40, 0xc1, 0x1d3, 0x2c5, 0x39, 0x252, 0x6}, "990f6516c6cdcace2a63754eb105159157c9cb6a7995032bd65b242c9cabca9805a3bba0fc4ec5cd002af0745ab223073768d1e5086a96839e195fc2b9af70e250aa8250ff6f17931d7e25f0de949ef91e71b21806ff27f51392c0cd5a87997ff546af3ab28199cc531d9255fbb839b34cbe4f541609584c86a215f568945a8cdd84dfdf4b9b21305e6096762cde18c2d4aee1ddcaa9066ba7341e443ab7f3bd2fe3ebaf8ec0847a", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x5c8) r2 = geteuid() mount$9p_rdma(&(0x7f00000029c0), &(0x7f0000002a00)='./file0\x00', &(0x7f0000002a40), 0x2800000, &(0x7f0000002a80)={'trans=rdma,', {'port', 0x3d, 0x4e23}, 0x2c, {[{@timeout={'timeout', 0x3d, 0x4931}}, {@rq={'rq', 0x3d, 0x897}}, {@timeout={'timeout', 0x3d, 0x6}}, {@sq={'sq', 0x3d, 0xab8c}}, {@common=@posixacl}], [{@fowner_eq}, {@subj_type={'subj_type', 0x3d, '\x00'}}, {@smackfshat}, {@uid_gt}, {@euid_gt={'euid>', r2}}, {@measure}, {@measure}]}}) readlink(&(0x7f0000002bc0)='./file0\x00', &(0x7f0000002c00)=""/106, 0x6a) lremovexattr(&(0x7f0000002c80)='.\x00', &(0x7f0000002cc0)=@known='system.sockprotoname\x00') recvmmsg$unix(r0, &(0x7f0000004380)=[{{&(0x7f0000002d80)=@abs, 0x6e, &(0x7f0000003e00)=[{&(0x7f0000002e00)=""/4096, 0x1000}], 0x1, &(0x7f0000003e40)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x60}}, {{0x0, 0x0, &(0x7f00000042c0)=[{&(0x7f0000003ec0)=""/191, 0xbf}, {&(0x7f0000003f80)=""/163, 0xa3}, {&(0x7f0000004040)=""/193, 0xc1}, {&(0x7f0000004140)=""/42, 0x2a}, {&(0x7f0000004180)=""/41, 0x29}, {&(0x7f00000041c0)=""/238, 0xee}], 0x6, &(0x7f0000004340)=[@cred={{0x1c}}], 0x20}}], 0x2, 0x0, &(0x7f0000004400)) mount$9p_fd(0x0, &(0x7f0000002d00)='./file0\x00', &(0x7f0000002d40), 0x6, &(0x7f0000004440)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@aname={'aname', 0x3d, 'smackfshat'}}, {@dfltuid={'dfltuid', 0x3d, r2}}], [{@permit_directio}, {@measure}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'port'}}]}}) pidfd_getfd(r6, r3, 0x0) connect$unix(r6, &(0x7f0000004500)=@file={0x0, './file0\x00'}, 0x6e) bind(r0, &(0x7f0000004580)=@qipcrtr={0x2a, 0x3, 0xfffffffe}, 0x80) flistxattr(r4, &(0x7f0000004600)=""/187, 0xbb) stat(&(0x7f00000046c0)='./file0\x00', &(0x7f0000004700)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000004cc0)={0x0, 0x0}, &(0x7f0000004d00)=0xc) sendmmsg$unix(r4, &(0x7f0000004e00)=[{{&(0x7f0000004780)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000004c40)=[{&(0x7f0000004800)="4fc2c6294615e3713bf0e7f494b3bdd651d1a2209887d68db943a3648a10abf3e707f6071d9d7358979d6a4bc6cd5baef73923ff492f6656a668d8c3f6bac452c5bceeb3aa41820352a9acf0c5ea430c24e2e2ce8d9c832890ea9fc18f1b1753d9d345c53b37fa23e32bc7662da4d085fa118a7eb1c2d2cab0b8d3a6793be0283b5e68bd28abc046a2ef3211de6cef89da210bddf45bebf58e79fb6d883870a576a84b720ffab58e0d9e0dc1a0521c2d851caedf964691b368ae013e8ec971bfe16426ce3bca79b522ab080657251933f7e772d992c5d05d4d4c25b92e9cff7c75", 0xe1}, {&(0x7f0000004900)="c591217eb1c086464a8b982d3b5c1bc175305737a7944a099a5c84fffaabc2a54053ae4ab08e2ad4ad70f0cccce2e5a69a9623f894e7c0a9f7b3763999d3096433dccba08eecc89885069be208f1f4e7ed6e07c40b51055ee90c1cc93e1027f98271c85da840bf18b0b09ffde026355e09591572fef2945331459d94104d3472c45e34a33cbab3cad2c6d6daa161c8511aa694587227a526d3e813ed8f81e0dbebc1b3f9295326e0a5e2cda8ccce01d41646cc0ce3fecc55c9b350876c2579ffc70d86bfce813e4859789cf53936cef215691176dcdec886ba", 0xd9}, {&(0x7f0000004a00)}, {&(0x7f0000004a40)="d8acbd3b", 0x4}, {&(0x7f0000004a80)="626f1e8d145ccdec69ca58199b83dec9f3f158c6a07885256cec75dcd0fa5a4bbecb0c55edb7e95327886fe1eba8857339e34ee550e7829359e25de2eaca86658947283cab922911aed8d23626043cad8d04673e52e2d7111a1e9a730591d2b3f52c4a1291b5959480d8b104acae5c2b30e9897e23b3c31272670f4029ec7f5467e7ca78b8374601a221e15c9bc4d83a00645b1b92eebfa64f7b73edcb5163e5e72906ee1cef65b26dccf99bebeee6df1e3eda7ebabde19868e6ee8efe2bf5dc", 0xc0}, {&(0x7f0000004b40)="2f970b26b281290b52185a6202171d9b69349265ba81ab1598491fb690ee923f0dc0756a4ef4069b4b3616a96e42ce6471cb75c97efb0929108cf5a2a344f62a8a4f2211a6d6b69b7e88ec625e66dbaaffb650ba36aa9175195f3d7311dbd25e474f7a9a9102604860d25e7356b846037dfb646035c536822470f9479335da356b13d6043072ef28ef95537888a418109afb8cf74fe0eaa24beb49af44b4e52980714aca4aebace46bd152def76c24c84a8e076b1c6d456ad3825e6fe2727a7521ab5f0fdfd3e8986678d180c95e02444f78b3e308a7e27590a74b53030faed54be75ed0a54dea1196e55f39248fdedd7d28b6c2", 0xf4}], 0x6, &(0x7f0000004dc0)=[@cred={{0x1c, 0x1, 0x2, {r7, r8}}}, @rights={{0x1c, 0x1, 0x1, [r5, 0xffffffffffffffff, r0]}}], 0x40, 0x4}}], 0x1, 0x4008010) [ 96.240024] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 96.241750] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 96.244143] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 96.245212] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 96.246706] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 96.247816] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 96.253053] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 96.253198] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 96.255677] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 96.256964] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 96.257855] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 96.259542] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 96.347229] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 96.349046] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 96.350615] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 96.353306] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 96.355046] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 96.356454] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 96.460557] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 96.469106] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 96.469408] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 96.490702] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 96.503043] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 96.505308] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 96.507505] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 96.556224] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 96.558673] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 96.582827] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 96.606180] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 96.625027] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 98.312955] Bluetooth: hci0: command 0x0409 tx timeout [ 98.312991] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 98.314135] Bluetooth: hci1: command 0x0409 tx timeout [ 98.315821] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 98.316964] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 98.318624] [ 98.318863] ====================================================== [ 98.319607] WARNING: possible circular locking dependency detected [ 98.320322] 6.2.0-next-20230224 #1 Not tainted [ 98.320834] ------------------------------------------------------ [ 98.322386] syz-executor.7/272 is trying to acquire lock: [ 98.324173] ffff888016c6c880 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xd80 [ 98.326573] [ 98.326573] but task is already holding lock: [ 98.327267] ffff888016c6c920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250 [ 98.328358] [ 98.328358] which lock already depends on the new lock. [ 98.328358] [ 98.329251] [ 98.329251] the existing dependency chain (in reverse order) is: [ 98.330250] [ 98.330250] -> #1 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}: [ 98.331261] __mutex_lock+0x133/0x14a0 [ 98.331932] hci_cmd_sync_work+0x1e6/0x320 [ 98.332629] process_one_work+0xa0f/0x1790 [ 98.333328] worker_thread+0x63b/0x1260 [ 98.334008] kthread+0x2e9/0x3a0 [ 98.334577] ret_from_fork+0x2c/0x50 [ 98.335201] [ 98.335201] -> #0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}: [ 98.336206] __lock_acquire+0x2d56/0x6380 [ 98.336762] lock_acquire.part.0+0xea/0x320 [ 98.337337] __flush_work+0x109/0xd80 [ 98.337866] __cancel_work_timer+0x39c/0x4e0 [ 98.338428] hci_cmd_sync_clear+0x52/0x250 [ 98.338988] hci_unregister_dev+0xf9/0x410 [ 98.339555] vhci_release+0x80/0x100 [ 98.340055] __fput+0x263/0xa40 [ 98.340512] task_work_run+0x174/0x280 [ 98.341041] do_exit+0xad8/0x2800 [ 98.341512] do_group_exit+0xd4/0x2a0 [ 98.342019] __x64_sys_exit_group+0x3e/0x50 [ 98.342583] do_syscall_64+0x3f/0x90 [ 98.343086] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 98.343750] [ 98.343750] other info that might help us debug this: [ 98.343750] [ 98.344808] Possible unsafe locking scenario: [ 98.344808] [ 98.345559] CPU0 CPU1 [ 98.346132] ---- ---- [ 98.346548] lock(&hdev->cmd_sync_work_lock); [ 98.346970] lock((work_completion)(&hdev->cmd_sync_work)); [ 98.347706] lock(&hdev->cmd_sync_work_lock); [ 98.348341] lock((work_completion)(&hdev->cmd_sync_work)); [ 98.348913] [ 98.348913] *** DEADLOCK *** [ 98.348913] [ 98.349484] 1 lock held by syz-executor.7/272: [ 98.349930] #0: ffff888016c6c920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250 [ 98.350926] [ 98.350926] stack backtrace: [ 98.351369] CPU: 1 PID: 272 Comm: syz-executor.7 Not tainted 6.2.0-next-20230224 #1 [ 98.352113] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 98.352902] Call Trace: [ 98.353158] [ 98.353391] dump_stack_lvl+0x91/0xf0 [ 98.353777] check_noncircular+0x263/0x2e0 [ 98.354212] ? __pfx_check_noncircular+0x10/0x10 [ 98.354725] __lock_acquire+0x2d56/0x6380 [ 98.355175] ? lock_is_held_type+0x9f/0x120 [ 98.355626] ? __pfx___lock_acquire+0x10/0x10 [ 98.356097] ? __pfx_register_lock_class+0x10/0x10 [ 98.356603] ? __wait_for_common+0x394/0x550 [ 98.357063] ? __pfx_lock_release+0x10/0x10 [ 98.357511] lock_acquire.part.0+0xea/0x320 [ 98.357960] ? __flush_work+0xdd/0xd80 [ 98.358371] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 98.358882] ? __flush_work+0xdd/0xd80 [ 98.359307] ? rcu_read_lock_sched_held+0x42/0x80 [ 98.359792] ? trace_lock_acquire+0x170/0x1e0 [ 98.360259] ? __flush_work+0xdd/0xd80 [ 98.360666] ? lock_acquire+0x32/0xc0 [ 98.361066] ? __flush_work+0xdd/0xd80 [ 98.361472] __flush_work+0x109/0xd80 [ 98.361869] ? __flush_work+0xdd/0xd80 [ 98.362280] ? __pfx_mark_lock.part.0+0x10/0x10 [ 98.362761] ? __pfx___flush_work+0x10/0x10 [ 98.363212] ? lock_acquire.part.0+0xea/0x320 [ 98.363676] ? hci_cmd_sync_clear+0x45/0x250 [ 98.364127] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 98.364629] ? hci_cmd_sync_clear+0x45/0x250 [ 98.365074] ? rcu_read_lock_sched_held+0x42/0x80 [ 98.365562] ? trace_lock_acquire+0x170/0x1e0 [ 98.366021] ? lock_is_held_type+0x9f/0x120 [ 98.366467] ? mark_held_locks+0x9e/0xe0 [ 98.366889] __cancel_work_timer+0x39c/0x4e0 [ 98.367367] ? __pfx___cancel_work_timer+0x10/0x10 [ 98.367854] ? __cancel_work_timer+0x2aa/0x4e0 [ 98.368318] ? __pfx___cancel_work_timer+0x10/0x10 [ 98.368798] ? lock_release+0x1e3/0x710 [ 98.369219] ? __pfx_lock_release+0x10/0x10 [ 98.369669] ? do_raw_write_lock+0x11e/0x3b0 [ 98.370118] ? __pfx_vhci_release+0x10/0x10 [ 98.370570] hci_cmd_sync_clear+0x52/0x250 [ 98.371006] ? __pfx_vhci_release+0x10/0x10 [ 98.371451] hci_unregister_dev+0xf9/0x410 [ 98.371894] vhci_release+0x80/0x100 [ 98.372283] __fput+0x263/0xa40 [ 98.372631] task_work_run+0x174/0x280 [ 98.373031] ? __pfx_task_work_run+0x10/0x10 [ 98.373491] ? do_raw_spin_unlock+0x53/0x220 [ 98.373944] do_exit+0xad8/0x2800 [ 98.374309] ? lock_release+0x1e3/0x710 [ 98.374730] ? __pfx_lock_release+0x10/0x10 [ 98.375182] ? do_raw_spin_lock+0x125/0x270 [ 98.375614] ? __pfx_do_exit+0x10/0x10 [ 98.376023] do_group_exit+0xd4/0x2a0 [ 98.376423] __x64_sys_exit_group+0x3e/0x50 [ 98.376455] Bluetooth: hci5: command 0x0409 tx timeout [ 98.376850] do_syscall_64+0x3f/0x90 [ 98.378040] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 98.378568] RIP: 0033:0x7f7cd5c98b19 [ 98.378939] Code: Unable to access opcode bytes at 0x7f7cd5c98aef. [ 98.379567] RSP: 002b:00007ffe727beaf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 98.380312] RAX: ffffffffffffffda RBX: 00007ffe727bf2d8 RCX: 00007f7cd5c98b19 [ 98.381008] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043 [ 98.381713] RBP: 0000000000000000 R08: 0000000000000026 R09: 00007ffe727bf2d8 [ 98.382420] R10: 0000000000000020 R11: 0000000000000246 R12: 00007f7cd5cf2233 [ 98.383115] R13: 0000000000000002 R14: 0000000000000000 R15: 00000000000000f8 [ 98.383836] [ 98.569476] Bluetooth: hci6: command 0x0409 tx timeout [ 98.696493] Bluetooth: hci7: command 0x0409 tx timeout [ 100.360470] Bluetooth: hci1: command 0x041b tx timeout [ 100.361057] Bluetooth: hci0: command 0x041b tx timeout [ 100.424421] Bluetooth: hci5: command 0x041b tx timeout [ 100.616410] Bluetooth: hci6: command 0x041b tx timeout [ 100.744497] Bluetooth: hci7: command 0x041b tx timeout [ 101.777490] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 101.783441] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 101.784020] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 101.785074] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 101.785901] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 101.786496] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 102.408419] Bluetooth: hci0: command 0x040f tx timeout [ 102.408440] Bluetooth: hci1: command 0x040f tx timeout [ 102.472497] Bluetooth: hci5: command 0x040f tx timeout [ 102.664421] Bluetooth: hci6: command 0x040f tx timeout [ 102.792478] Bluetooth: hci7: command 0x040f tx timeout [ 103.816429] Bluetooth: hci2: command 0x0409 tx timeout [ 104.328421] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 104.329350] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 104.456450] Bluetooth: hci1: command 0x0419 tx timeout [ 104.457277] Bluetooth: hci0: command 0x0419 tx timeout [ 104.521527] Bluetooth: hci5: command 0x0419 tx timeout [ 104.713418] Bluetooth: hci6: command 0x0419 tx timeout [ 104.840415] Bluetooth: hci7: command 0x0419 tx timeout [ 105.864425] Bluetooth: hci2: command 0x041b tx timeout [ 107.912823] Bluetooth: hci2: command 0x040f tx timeout VM DIAGNOSIS: 11:46:24 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffffffff8777c918 RCX=ffffffff812c0e99 RDX=ffffffff87177460 RSI=0000000000000003 RDI=0000000000000036 RBP=dffffc0000000000 RSP=ffff88800f5cfbb0 R8 =0000000000000001 R9 =0000000000006714 R10=0000000000000000 R11=0000000000000001 R12=0000000000000529 R13=ffffffff87146f68 R14=ffffffff87075428 R15=ffffffff87177460 RIP=ffffffff812c0cc5 RFL=00000012 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe176cd4d000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe176cd4b000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f8140ee7f88 CR3=000000000f724000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ff000000000000000000000000000000 XMM02=00ff0000000000000000000000000000 XMM03=00000000000000000000ff00000000ff XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff82502865 RDI=ffffffff87f10da0 RBP=ffffffff87f10d60 RSP=ffff888018fbf100 R8 =0000000000000001 R9 =000000000000000a R10=000000000000002d R11=0000000000000001 R12=000000000000002d R13=ffffffff87f10d60 R14=0000000000000010 R15=ffffffff82502850 RIP=ffffffff825028bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe20614d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe20614d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007faf0bf4f9c8 CR3=0000000015b14000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=2034323a36343a313120353220626546 XMM01=5d3132383531332e38392020205b203a XMM02=632078302065646f63704f203a336963 XMM03=383531332e38392020205b203a6c656e XMM04=2030323a36343a313120353220626546 XMM05=65636f72703d7373616c63742030733a XMM06=733a755f6d65747379733d747865746e XMM07=725f6d65747379733a755f6d65747379 XMM08=7475636578652d7a7973223d6d6d6f63 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000